Blogroll | Communications of the ACM

From Schneier on Security

Zipcar Disruption

This isn't a security story, but it easily could have been. Last Saturday, Zipcar had a system outage: "an outage experienced by a third party telecommunications... Bruce Schneier
From Schneier on Security | March 20, 2019 at 01:38 PM

From Schneier on Security

An Argument that Cybersecurity Is Basically Okay

Andrew Odlyzko's new essay is worth reading -- "Cybersecurity is not very important": Abstract: There is a rising tide of security breaches. There is an even faster... Bruce Schneier
From Schneier on Security | March 20, 2019 at 07:03 AM

From Schneier on Security

Triton

Good article on the Triton malware which targets industrial control systems.... Bruce Schneier
From Schneier on Security | March 19, 2019 at 07:48 AM

From Schneier on Security

CAs Reissue Over One Million Weak Certificates

Turns out that the software a bunch of CAs used to generate public-key certificates was flawed: they created random serial numbers with only 63 bits instead of... Bruce Schneier
From Schneier on Security | March 18, 2019 at 07:23 AM

From Schneier on Security

Friday Squid Blogging: A Squid-Related Vacation Tour in Hawaii

You can hunt for the Hawaiian bobtail squid. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read... Bruce Schneier
From Schneier on Security | March 15, 2019 at 05:24 PM

From Schneier on Security

I Was Cited in a Court Decision

An article I co-wrote -- my first law journal article -- was cited by the Massachusetts Supreme Judicial Court -- the state supreme court -- in a case on compelled... Bruce Schneier
From Schneier on Security | March 15, 2019 at 03:38 PM

From Schneier on Security

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I'm teaching a live online class called "Spotlight on Cloud: The Future of Internet Security with... Bruce Schneier
From Schneier on Security | March 15, 2019 at 03:15 PM

From Schneier on Security

Critical Flaw in Swiss Internet Voting System

Researchers have found a critical flaw in the Swiss Internet voting system. I was going to write an essay about how this demonstrates that Internet voting is a... Bruce Schneier
From Schneier on Security | March 15, 2019 at 10:44 AM

From Schneier on Security

DARPA Is Developing an Open-Source Voting System

This sounds like a good development: ...a new $10 million contract the Defense Department's Defense Advanced Research Projects Agency (DARPA) has launched to design... Bruce Schneier
From Schneier on Security | March 14, 2019 at 02:20 PM

From Schneier on Security

Judging Facebook's Privacy Shift

Facebook is making a new and stronger commitment to privacy. Last month, the company hired three of its most vociferous critics and installed them in senior technical... Bruce Schneier
From Schneier on Security | March 13, 2019 at 07:51 AM

From Schneier on Security

On Surveillance in the Workplace

Data & Society just published a report entitled "Workplace Monitoring & Surveillance": This explainer highlights four broad trends in employee monitoring and surveillance... Bruce Schneier
From Schneier on Security | March 12, 2019 at 07:38 AM

From Schneier on Security

Russia Is Testing Online Voting

This is a bad idea: A second innovation will allow "electronic absentee voting" within voters' home precincts. In other words, Russia is set to introduce its first... Bruce Schneier
From Schneier on Security | March 11, 2019 at 07:54 AM

From Schneier on Security

Friday Squid Blogging: Squid Proteins Can Be an Alternative to Plastic

Is there anything squids aren't good for? Academic paper. As usual, you can also use this squid post to talk about the security stories in the news that I haven't... Bruce Schneier
From Schneier on Security | March 8, 2019 at 05:36 PM

From Schneier on Security

Videos and Links from the Public-Interest Technology Track at the RSA Conference

Yesterday at the RSA Conference, I gave a keynote talk about the role of public-interest technologists in cybersecurity. (Video here). I also hosted a one-day mini... Bruce Schneier
From Schneier on Security | March 8, 2019 at 03:24 PM

From Schneier on Security

Cybersecurity Insurance Not Paying for NotPetya Losses

This will complicate things: To complicate matters, having cyber insurance might not cover everyone's losses. Zurich American Insurance Company refused to pay out... Bruce Schneier
From Schneier on Security | March 8, 2019 at 06:57 AM

From Schneier on Security

Detecting Shoplifting Behavior

This system claims to detect suspicious behavior that indicates shoplifting: Vaak, a Japanese startup, has developed artificial intelligence software that hunts... Bruce Schneier
From Schneier on Security | March 7, 2019 at 02:48 PM

From Schneier on Security

Letterlocking

Really good article on the now-lost art of letterlocking.... Bruce Schneier
From Schneier on Security | March 7, 2019 at 07:25 AM

From Schneier on Security

Digital Signatures in PDFs Are Broken

Researchers have demonstrated spoofing of digital signatures in PDF files. This would matter more if PDF digital signatures were widely used. Still, the researchers... Bruce Schneier
From Schneier on Security | March 6, 2019 at 07:17 AM

From Schneier on Security

Cybersecurity for the Public Interest

The Crypto Wars have been waging off-and-on for a quarter-century. On one side is law enforcement, which wants to be able to break encryption, to access devices... Bruce Schneier
From Schneier on Security | March 5, 2019 at 07:31 AM

From Schneier on Security

The Latest in Creepy Spyware

The Nest home alarm system shipped with a secret microphone, which -- according to the company -- was only an accidental secret: On Tuesday, a Google spokesperson... Bruce Schneier
From Schneier on Security | March 4, 2019 at 07:04 AM