Visible to the public Science of Security VO

In the Spotlight

The Research Directorate of the National Security Agency is pleased to announce the winner of this year's Science of Security (SoS) Best Scientific Cybersecurity Paper Competition. Of the 35 papers nominated, one winner and one honorable mention were chosen...
The lastest information on all upcoming science of security related events.
The Saturday Cybersecurity Awareness Workshop for Grades 6-8 provides an interactive learning and mentoring experience for girls in grades 6-8 who are interested in technology, computers, and cybersecurity! Undergraduate students will lead activities in various computer and technology related topics. This event will...
The government is sponsoring this survey to identify research currently being done in the Science of Security (SoS) as well as research that might apply to the Science of Security. The results of the survey will be used to build a Science of Security community, to nurture and foster research being done in the discipline,...
The annually held CRITIS conference is devoted to Critical (Information) Infrastructure security, protection and resilience. The 9th edition will be held from 13-15 October 2014 in Limassol, Cyprus. Modern society relies on the availability and smooth operation of a variety of complex engineering systems. These systems...
To understand how cybersecurity academic programs are evolving, and in the process identify both challenges and emerging leading practices, IBM interviewed professors and department heads from 15 programs in six different countries. Study participants were selected from over 200 programs followed by the IBM Cyber Security...
The 2014 Symposium and Bootcamp on the Science of Security (HotSoS) was held April 8-9, 2014 in Raleigh, North Carolina. Presentations given at this meeting are archived at http://cps-vo.org/group/sos/hotsos2014/program . Over 130 leaders from government, industry, and the academic community met to discuss new and ongoing...
An ad hoc National Research Council committee will consider future research goals and directions for foundational science in cybersecurity, to include relevant efforts in economics and behavioral science as well as more "traditional" cybersecurity topics. It will also consider how investments in foundational work support...

Visible to the public 

Recent Publications

  • Abstract: Trusting a computer for a security-sensitive task (such as checking email or banking online) requires the user to know something about the computer's state. We examine research on securely capturing a computer's state, and consider the utility of this information both for improving... more
  • Abstract: Captchas are designed to be easy for humans but hard for machines. However, most recent research has focused only on making them hard for machines. In this paper, we present what is to the best of our knowledge the first large scale evaluation of captchas from the human perspective, with the goal... more
  • Abstract: Black-box web application vulnerability scanners are automated tools that probe web applications for security vulnerabilities. In order to assess the current state of the art, we obtained access to eight leading tools and carried out a study of: (i) the class of vulnerabilities tested by these... more

Recent News