Science of Security VO

Paper on One-Way-Functions Wins NSA Paper Competition

"On One-way Functions and Kolmogorov Complexity" wins the 9th Annual Best Scientific Cybersecurity Paper Competition. This paper was written by Yanyi Liu from Cornell University and Rafael Pass from Cornell Tech. An honorable mention award was given to "Retrofitting Fine Grain Isolation in the Firefox Renderer” written by...

Paper on One-Way-Functions Wins NSA Paper Competition

Fall'21 Science of Security Quarterly Lablet Meeting

The Fall'21 Science of Security Quarterly Lablet Meeting will be hosted by The University of Kansas on November 15-16, 2021. The program agenda will include invited talks from Dr. Robert Runser (NSA) and Dr. Natarajan Shankar (SRI) as well as briefs from the Lablets. The meeting will be virtual. To gain access to the...

Fall'21 Science of Security Quarterly Lablet Meeting

Cybersecurity Snapshots #25 - Schools and Universities Targeted by Hackers During Pandemic

Cybersecurity Snapshots #25 - Schools and Universities Targeted by Hackers During Pandemic According to researchers, ransomware attacks hit schools and colleges harder than any other industry during the first year of the pandemic. Malicious actors look for easy targets, and education institutions often struggle to find...

Cybersecurity Snapshots #25 - Schools and Universities Targeted by Hackers During Pandemic

Reviews & Outreach Subscription

Subscribe to Reviews & Outreach (R&O) - designed to highlight some of the exciting research, news, and events that impact our technical community.

Reviews & Outreach Subscription

2022 RSA Conference

With public health and safety as the top priority, we’ve elected to move RSAC 2022 event date from February to June 6-9, 2022. The physical event will remain in San Francisco at the Moscone Center. We’re incredibly excited to return to San Francisco in 2022! The theme for RSAC 2022 is Transform. Today, we are stronger...

2022 RSA Conference

SoS Musings #54 - The Role of Psychology in Cybersecurity

SoS Musings #54 - The Role of Psychology in Cybersecurity According to a joint study from Stanford University Professor Jeff Hancock and the security firm Tessian, 85 percent of data breaches stem from human error. This finding, accompanied by Proofpoint's report of more than 99 percent of cyberattacks relying on...

SoS Musings #54 - The Role of Psychology in Cybersecurity

Challenge Problem - CAGE Reinforcement Learning for Cyberdefense

Recent advances in artificial intelligence (AI) technologies show promise for autonomous cyber operations (ACO), offering the potential for distributed, adaptive defensive measures at machine speed and scale. The cyber domain is a particularly challenging domain for autonomous AI. We nominate a challenge in this space...

Challenge Problem - CAGE Reinforcement Learning for Cyberdefense

HotSoS 2021 Summary Report

Hot Topics in the Science of Security (HotSoS) 2021 The National Security Agency (NSA) virtually hosted the 8th Annual Symposium on the Science of Security (HotSoS), from 13-15 April 2021. The General Chair was Adam Tagert (NSA) and Program Co-Chairs were Ozgur Kafali (University of Kent) and Ahmad Ridley (NSA)....

HotSoS 2021 Summary Report

Submitted by akarns on Tue, 02/16/2021 - 12:33pm

Paper on One-Way-Functions Wins NSA Paper Competition
"On One-way Functions and Kolmogorov Complexity" wins the 9th Annual... more
Follow @SoS_VO_org on Twitter!
Follow @SoS_VO_org on Twitter! The SoS-VO team is excited to... more
"Red Cross Implores Hackers Not To Leak Data for 515k 'Highly Vulnerable People'"
The International Committee for the Red Cross (ICRC) has revealed... more
"More Than Half of Medical Devices Found To Have Critical Vulnerabilities"
Cynerio's 2022 State of Healthcare IoT Device Security Report... more
"Top Public Sector Cybersecurity Threat No Longer is Employees"
According to the Public Sector Cybersecurity Survey Report released... more
"Third Firmware Bootkit Discovered"
Cybersecurity researchers at Kaspersky have discovered a third known... more
"Research: Why Employees Violate Cybersecurity Policies"
Security researchers asked more than 330 remote employees from a wide... more

more ►

02/01/22 - 02/03/22

Critical Infrastructure Protection and Resilience North America Conference
02/21/22 - 02/25/22

15th ACM International Conference on Web Search and Data Mining
02/22/22 - 03/01/22

AICS 2022
02/27/22 - 03/03/22

Network and Distributed System Security (NDSS) Symposium 2022

more ►

Deep Reinforcement Learning for Mitigating Cyber-Physical DER Voltage Unbalance Attacks
Abstract: The deployment of DER with smart-inverter functionality is increasing the controllable assets on power distribution networks and, consequently, the cyber-physical attack surface. Within this work, we consider the use of reinforcement learning as an online controller that adjusts DER Volt/Var and... more
On the RIS Manipulating Attack and Its Countermeasures in Physical-Layer Key Generation
Abstract: Reconfigurable Intelligent Surface (RIS) is a new paradigm that enables the reconfiguration of the wireless environment. Based on this feature, RIS can be employed to facilitate Physical-layer Key Generation (PKG). However, this technique could also be exploited by the attacker to destroy the key... more
Infrastructure eXpression for Codified Cyber Attack Surfaces and Automated Applicability
Abstract: The internal laboratory directed research and development (LDRD) project Infrastructure eXpression (IX) at the Idaho National Laboratory (INL), is based on codifying infrastructure to support automatic applicability to emerging cyber issues, enabling automated cyber responses, codifying attack... more
Compressing Network Attack Surfaces for Practical Security Analysis
Abstract: Testing or defending the security of a large network can be challenging because of the sheer number of potential ingress points that need to be investigated and evaluated for vulnerabilities. In short, manual security testing and analysis do not easily scale to large networks. While it has been... more
IoT Standard Platform Architecture That Provides Defense against DDoS Attacks
Abstract: IoT devices have evolved with the goal of becoming more connected. However, for security it is necessary to reduce the attack surface by allowing only necessary devices to be connected. In addition, as the number of IoT devices increases, DDoS attacks targeting IoT devices also increase. In this... more

more ►

UPDATED 2022 Summer Internship Program in Science of Security (SIP-SoS) - Accepting Applications
The National Security Agency (NSA) Summer Internship Program in Science of...
Young Faculty Award (YFA) Program
Young Faculty Award (YFA) Program Solicitation Number: DARPA-RA-19-01 Agency...
Call for Papers: Theme Issue on Formal Methods at Scale
CALL FOR PAPERS Theme Issue on Formal Methods at Scale S&P seeks...
Program Manager Position at Columbia Data Science Institute
Data Science Institute at Columbia University is a world-leading institute in...
CfP: IJCAI ACD
CALL FOR PAPERS International Joint Conference on Artificial Intelligence (...

more ►