Blogroll | Communications of the ACM

From Schneier on Security

Failure Modes in Machine Learning

Interesting taxonomy of machine-learning failures (pdf) that encompasses both mistakes and attacks, or -- in their words -- intentional and unintentional failure... Bruce Schneier
From Schneier on Security | December 9, 2019 at 06:56 AM

From Schneier on Security

Friday Squid Blogging: Squidfall Safety

Watchmen supporting material. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting... Bruce Schneier
From Schneier on Security | December 6, 2019 at 05:20 PM

From Schneier on Security

Andy Ellis on Risk Assessment

Andy Ellis, the CSO of Akamai, gave a great talk about the psychology of risk at the Business of Software conference this year. I've written about this before.... Bruce Schneier
From Schneier on Security | December 6, 2019 at 07:55 AM

From Schneier on Security

Election Machine Insecurity Story

Interesting story of a flawed computer voting machine and a paper ballot available for recount. All ended well, but only because of that paper backup. Vote totals... Bruce Schneier
From Schneier on Security | December 5, 2019 at 07:06 AM

From Schneier on Security

Becoming a Tech Policy Activist

Carolyn McCarthy gave an excellent TEDx talk about becoming a tech policy activist. It's a powerful call for public-interest technologists.... Bruce Schneier
From Schneier on Security | December 4, 2019 at 07:04 AM

From Schneier on Security

RSA-240 Factored

This just in: We are pleased to announce the factorization of RSA-240, from RSA's challenge list, and the computation of a discrete logarithm of the same size (795... Bruce Schneier
From Schneier on Security | December 3, 2019 at 03:12 PM

From Schneier on Security

The Story of Tiversa

The New Yorker has published the long and interesting story of the cybersecurity firm Tiversa. Watching "60 Minutes," Boback saw a remarkable new business angle... Bruce Schneier
From Schneier on Security | December 3, 2019 at 07:19 AM

From Schneier on Security

Cameras that Automatically Detect Mobile Phone Use

New South Wales is implementing a camera system that automatically detects when a driver is using a mobile phone.... Bruce Schneier
From Schneier on Security | December 2, 2019 at 06:56 AM

From Schneier on Security

Friday Squid Blogging: Squid-Like Underwater Drone

The Sea Hunting Autonomous Reconnaissance Drone (SHARD) swims like a squid and can explode on command. As usual, you can also use this squid post to talk about... Bruce Schneier
From Schneier on Security | November 29, 2019 at 05:13 PM

From Schneier on Security

Manipulating Machine Learning Systems by Manipulating Training Data

Interesting research: "TrojDRL: Trojan Attacks on Deep Reinforcement Learning Agents": Abstract:: Recent work has identified that classification models implemented... Bruce Schneier
From Schneier on Security | November 29, 2019 at 06:43 AM

From Schneier on Security

DHS Mandates Federal Agencies to Run Vulnerability Disclosure Policy

The DHS is requiring all federal agencies to develop a vulnerability disclosure policy. The goal is that people who discover vulnerabilities in government systems... Bruce Schneier
From Schneier on Security | November 27, 2019 at 04:34 PM

From Schneier on Security

Friday Squid Blogging: T-Shirt

"Squid Pro Quo" T-shirt. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting... Bruce Schneier
From Schneier on Security | November 22, 2019 at 05:19 PM

From Schneier on Security

The NSA Warns of TLS Inspection

The NSA has released a security advisory warning of the dangers of TLS inspection: Transport Layer Security Inspection (TLSI), also known as TLS break and inspect... Bruce Schneier
From Schneier on Security | November 22, 2019 at 07:16 AM

From Schneier on Security

GPS Manipulation

Long article on the manipulation of GPS in Shanghai. It seems not to be some Chinese military program, but ships who are stealing sand. The Shanghai "crop circles... Bruce Schneier
From Schneier on Security | November 21, 2019 at 07:26 AM

From Schneier on Security

Iran Has Shut Off the Internet

Iran has gone pretty much entirely offline in the wake of nationwide protests. This is the best article detailing what's going on; this is also good. AccessNow... Bruce Schneier
From Schneier on Security | November 20, 2019 at 07:52 AM

From Schneier on Security

Security Vulnerabilities in Android Firmware

Researchers have discovered and revealed 146 vulnerabilities in various incarnations of Android smartphone firmware. The vulnerabilities were found by scanning... Bruce Schneier
From Schneier on Security | November 18, 2019 at 07:33 AM

From Schneier on Security

Friday Squid Blogging: Planctotuethis Squid

Neat video, and an impressive-looking squid. I can't figure out how long it is. As usual, you can also use this squid post to talk about the security stories in... Bruce Schneier
From Schneier on Security | November 15, 2019 at 05:13 PM

From Schneier on Security

TPM-Fail Attacks Against Cryptographic Coprocessors

Really interesting research: TPM-FAIL: TPM meets Timing and Lattice Attacks, by Daniel Moghimi, Berk Sunar, Thomas Eisenbarth, and Nadia Heninger. Abstract: Trusted... Bruce Schneier
From Schneier on Security | November 15, 2019 at 10:36 AM

From Schneier on Security

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I'm speaking on "Securing a World of Physically Capable Computers" at the Indian Institute of... Bruce Schneier
From Schneier on Security | November 14, 2019 at 02:17 PM

From Schneier on Security

Technology and Policymakers

Technologists and policymakers largely inhabit two separate worlds. It's an old problem, one that the British scientist CP Snow identified in a 1959 essay entitled... Bruce Schneier
From Schneier on Security | November 14, 2019 at 08:04 AM