Blogroll | Communications of the ACM

From Schneier on Security

Splitting the NSA and US Cyber Command

Rumor is that the Trump administration will separate the NSA and US Cyber Command. I have long thought this was a good idea. Here's a good discussion of what it... Bruce Schneier
From Schneier on Security | August 3, 2017 at 07:29 AM

From Schneier on Security

Voting Machine Security

Last week, DefCon hosted a "Voter Hacker Village" event. Every single voting machine there was easily hackable. Here are detailed details. There should be a summary... Bruce Schneier
From Schneier on Security | August 2, 2017 at 01:59 PM

From Schneier on Security

Detecting Stingrays

Researchers are developing technologies that can detect IMSI-catchers: those fake cell phone towers that can be used to surveil people in the area. This is good... Bruce Schneier
From Schneier on Security | August 2, 2017 at 08:39 AM

From Schneier on Security

NSA Collects MS Windows Error Information

Back in 2013, Der Spiegel reported that the NSA intercepts and collects Windows bug reports: One example of the sheer creativity with which the TAO spies approach... Bruce Schneier
From Schneier on Security | August 1, 2017 at 07:00 AM

From Schneier on Security

Vulnerabilities in Car Washes

Articles about serious vulnerabilities in IoT devices and embedded systems are now dime-a-dozen. This one concerns Internet-connected car washes: A group of security... Bruce Schneier
From Schneier on Security | August 1, 2017 at 06:47 AM

From Schneier on Security

Robot Safecracking

Robots can crack safes faster than humans -- and differently: So Seidle started looking for shortcuts. First he found that, like many safes, his SentrySafe had... Bruce Schneier
From Schneier on Security | July 31, 2017 at 01:19 PM

From Schneier on Security

Measuring Vulnerability Rediscovery

New paper: "Taking Stock: Estimating Vulnerability Rediscovery," by Trey Herr, Bruce Schneier, and Christopher Morris: Abstract: How often do multiple, independent... Bruce Schneier
From Schneier on Security | July 31, 2017 at 06:59 AM

From Schneier on Security

Friday Squid Blogging: Giant Squids Have Small Brains

New research: In this study, the optic lobe of a giant squid (Architeuthis dux, male, mantle length 89 cm), which was caught by local fishermen off the northeastern... Bruce Schneier
From Schneier on Security | July 28, 2017 at 05:00 PM

From Schneier on Security

Me on Restaurant Surveillance Technology

I attended the National Restaurant Association exposition in Chicago earlier this year, and looked at all the ways modern restaurant IT is spying on people. But... Bruce Schneier
From Schneier on Security | July 28, 2017 at 03:20 PM

From Schneier on Security

Zero-Day Vulnerabilities against Windows in the NSA Tools Released by the Shadow Brokers

In April, the Shadow Brokers -- presumably Russia -- released a batch of Windows exploits from what is presumably the NSA. Included in that release were eight different... Bruce Schneier
From Schneier on Security | July 28, 2017 at 07:16 AM

From Schneier on Security

Firing a Locked Smart Gun

The Armatix IP1 "smart gun" can only be fired by someone who is wearing a special watch. Unfortunately, this security measure is easily hackable.... Bruce Schneier
From Schneier on Security | July 27, 2017 at 07:14 AM

From Schneier on Security

Roombas will Spy on You

The company that sells the Roomba autonomous vacuum wants to sell the data about your home that it collects.... Bruce Schneier
From Schneier on Security | July 26, 2017 at 07:06 AM

From Schneier on Security

Alternatives to Government-Mandated Encryption Backdoors

Policy essay: "Encryption Substitutes," by Andrew Keane Woods: In this short essay, I make a few simple assumptions that bear mentioning at the outset. First, I... Bruce Schneier
From Schneier on Security | July 25, 2017 at 07:52 AM

From Schneier on Security

US Army Researching Bot Swarms

The US Army Research Agency is funding research into autonomous bot swarms. From the announcement: The objective of this CRA is to perform enabling basic and applied... Bruce Schneier
From Schneier on Security | July 24, 2017 at 07:39 AM

From Schneier on Security

Friday Squid Blogging: Giant Squid Caught Off the Coast of Ireland

It's the second in two months. Video. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my... Bruce Schneier
From Schneier on Security | July 21, 2017 at 05:33 PM

From Schneier on Security

Hacking a Segway

The Segway has a mobile app. It is hackable: While analyzing the communication between the app and the Segway scooter itself, Kilbride noticed that a user PIN number... Bruce Schneier
From Schneier on Security | July 21, 2017 at 07:23 AM

From Schneier on Security

Ethereum Hacks

The press is reporting a $32M theft of the cryptocurrency Ethereum. Like all such thefts, they're not a result of a cryptographic failure in the currencies, but... Bruce Schneier
From Schneier on Security | July 20, 2017 at 10:12 AM

From Schneier on Security

Password Masking

Slashdot asks if password masking -- replacing password characters with asterisks as you type them -- is on the way out. I don't know if that's true, but I would... Bruce Schneier
From Schneier on Security | July 19, 2017 at 11:35 AM

From Schneier on Security

Many of My E-Books for Cheap

Humble Bundle is selling a bunch of cybersecurity books very cheaply. You can get copies of Applied Cryptography, Secrets and Lies, and Cryptography Engineering... Bruce Schneier
From Schneier on Security | July 18, 2017 at 07:38 AM

From Schneier on Security

Australia Considering New Law Weakening Encryption

News from Australia: Under the law, internet companies would have the same obligations telephone companies do to help law enforcement agencies, Prime Minister Malcolm... Bruce Schneier
From Schneier on Security | July 17, 2017 at 07:29 AM