Visible to the public Science of Security VO

BY LORRIE CRANOR, OPINION CONTRIBUTOR -- 11/10/20 09:30 AM EST Since the COVID-19 pandemic began, technologists across the country have rushed to develop digital apps for contact tracing and exposure notifications. New York, New Jersey, Pennsylvania, and Delaware have all recently announced the launch of such apps,...
The National Security Agency and Science of Security annouced that "Spectre Attacks: Exploiting Speculative Execution" as the winner of its 8th Annual Best Cybersecurity Research Paper competition. Originally published at the 2019 IEEE Security & Privacy Symposium, the winning paper, in combination with Meltdown,...
The Science of Security and Privacy 2019 Annual Report is now available. This report highlights the progress and accomplishments of the Science of Security and Privacy initiative.
Spotlight on Lablet Research #12 - Project: Operationalizing Contextual Integrity Lablet: International Computer Science Institute Sub-Lablet: Cornell Tech The ultimate goal of this research is to design new privacy controls that are grounded in the theory of Contextual Integrity (CI) so that they can...
Congratulations to Michael Rausch & William Sanders for winning the Best Paper Award at QEST 2020!  "Sensitivity Analysis and Uncertainty Quantification of State-Based Discrete-Event Simulation Models through a Stacked Ensemble of Metamodels" was presented by Michael Rausch on behalf of himself and Dr. Sanders on day...
Cybersecurity Snapshots #12 - Open Source Code: Is It Secure? Many organizations are adopting the use of open source code to help them develop commercial applications faster. A third of the average commercial application code base is comprised from open source code. Since many organizations rely on producing software...
SoS Musings #43 - Crowdsourcing Security with Bug Bounty Programs Companies are increasingly enlisting the help of ethical hackers through bug bounty programs. Bug bounty programs are crowdsourcing initiatives that encourage security researchers to find and appropriately report the security issues they discover to...
https://www.nsa.gov/News-Features/Feature-Stories/Article-View/Article/2396500/science-of-securitys-annual-security-conference-goes-virtual-and-gets-r... Photo of Adam Tagert behind computer monitor FT. MEADE, Md., Oct. 28, 2020 -- October is National Cybersecurity Awareness Month (NCSAM), so we have been celebrating...