Blogroll | Communications of the ACM

From Schneier on Security

Declassified NSA Newsletters

Through a 2010 FOIA request (yes, it took that long), we have copies of the NSA’s KRYPTOS Society Newsletter, “Tales of the Krypt,” from 1994 to 2003. There are... Bruce Schneier
From Schneier on Security | April 2, 2024 at 01:05 PM

From Schneier on Security

Magic Security Dust

Adam Shostack is selling magic security dust. It’s about time someone is commercializing this essential technology. Bruce Schneier
From Schneier on Security | April 1, 2024 at 10:19 AM

From Schneier on Security

Ross Anderson

Ross Anderson unexpectedly passed away Thursday night in, I believe, his home in Cambridge. I can’t remember when I first met Ross. Of course it was before 2008... Bruce Schneier
From Schneier on Security | March 31, 2024 at 08:21 PM

From Schneier on Security

Friday Squid Blogging: The Geopolitics of Eating Squid

New York Times op-ed on the Chinese dominance of the squid industry: China’s domination in seafood has raised deep concerns among American fishermen, policymakers... Bruce Schneier
From Schneier on Security | March 29, 2024 at 05:02 PM

From Schneier on Security

Lessons from a Ransomware Attack against the British Library

You might think that libraries are kind of boring, but this self-analysis of a 2023 ransomware and extortion attack against the British Library is anything but. Bruce Schneier
From Schneier on Security | March 29, 2024 at 07:03 AM

From Schneier on Security

On Secure Voting Systems

Andrew Appel shepherded a public comment—signed by twenty election cybersecurity experts, including myself—on best practices for ballot marking devices and vote... Bruce Schneier
From Schneier on Security | March 26, 2024 at 07:08 AM

From Schneier on Security

AI and Trust

Watch the Video on YouTube.com A 15-minute talk by Bruce Schneier. B. Schneier
From Schneier on Security | March 26, 2024 at 05:01 AM

From Schneier on Security

Licensing AI Engineers

The debate over professionalizing software engineers is decades old. (The basic idea is that, like lawyers and architects, there should be some professional licensing... Bruce Schneier
From Schneier on Security | March 25, 2024 at 07:04 AM

From Schneier on Security

Friday Squid Blogging: New Species of Squid Discovered

A new species of squid was discovered, along with about a hundred other species. As usual, you can also use this squid post to talk about the security stories in... Bruce Schneier
From Schneier on Security | March 22, 2024 at 05:03 PM

From Schneier on Security

Google Pays $10M in Bug Bounties in 2023

BleepingComputer has the details. It’s $2M less than in 2022, but it’s still a lot. The highest reward for a vulnerability report in 2023 was $113,337, while the... Bruce Schneier
From Schneier on Security | March 22, 2024 at 07:01 AM

From Schneier on Security

Public AI as an Alternative to Corporate AI

This mini-essay was my contribution to a round table on Power and Governance in the Age of AI. It’s nothing I haven’t said here before, but for anyone who hasn... Bruce Schneier
From Schneier on Security | March 21, 2024 at 07:03 AM

From Schneier on Security

Cheating Automatic Toll Booths by Obscuring License Plates

The Wall Street Journal is reporting on a variety of techniques drivers are using to obscure their license plates so that automatic readers can’t identify them... Bruce Schneier
From Schneier on Security | March 20, 2024 at 07:08 AM

From Schneier on Security

AI and the Evolution of Social Media

Oh, how the mighty have fallen. A decade ago, social media was celebrated for sparking democratic uprisings in the Arab world and beyond. Now front pages are splashed... Bruce Schneier
From Schneier on Security | March 19, 2024 at 07:05 AM

From Schneier on Security

Drones and the US Air Force

Fascinating analysis of the use of drones on a modern battlefield—that is, Ukraine—and the inability of the US Air Force to react to this change. The F-35A certainly... Bruce Schneier
From Schneier on Security | March 18, 2024 at 07:03 AM

From Schneier on Security

Friday Squid Blogging: Operation Squid

Operation Squid found 1.3 tons of cocaine hidden in frozen fish. As usual, you can also use this squid post to talk about the security stories in the news thathere... Bruce Schneier
From Schneier on Security | March 15, 2024 at 05:08 PM

From Schneier on Security

Improving C++

C++ guru Herb Sutter writes about how we can improve the programming language for better security. The immediate problem “is” that it’s Too Easy By Default™ totype... Bruce Schneier
From Schneier on Security | March 15, 2024 at 07:05 AM

From Schneier on Security

Automakers Are Sharing Driver Data with Insurers without Consent

Kasmir Hill has the story: Modern cars are internet-enabled, allowing access to services like navigation, roadside assistance and car apps that drivers can connect... Bruce Schneier
From Schneier on Security | March 14, 2024 at 07:01 AM

From Schneier on Security

Burglars Using Wi-Fi Jammers to Disable Security Cameras

The arms race continues, as burglars are learning how to use jammers to disable Wi-Fi security cameras. Bruce Schneier
From Schneier on Security | March 13, 2024 at 07:07 AM

From Schneier on Security

Jailbreaking LLMs with ASCII Art

Researchers have demonstrated that putting words in ASCII art can cause LLMs—GPT-3.5, GPT-4, Gemini, Claude, and Llama2—to ignore their safety instructions. Research... Bruce Schneier
From Schneier on Security | March 12, 2024 at 07:12 AM

From Schneier on Security

Using LLMs to Unredact Text

Initial results in using LLMs to unredact text based on the size of the individual-word redaction rectangles. This feels like something that a specialized ML system... Bruce Schneier
From Schneier on Security | March 11, 2024 at 07:01 AM