Communications of the ACM
Refine your search:
How the “Frontier” Became the Slogan of Uncontrolled AI
Artificial intelligence (AI) has been billed as the next frontier of humanity: the newly available expanse whose exploration …
From Schneier on Security
Problems with Mac OS X Lion Passwords
Seems like some dumb mistakes. News article.
From Schneier on Security
Tor Arms Race
Iran blocks Tor, and Tor releases a workaround on the same day. How did the filter work technically? Tor tries to make its traffic look like a web browser talking...
From Schneier on Security
Friday Squid Blogging: Sex Life of Deep-Sea Squid
There's evidence of indiscriminate fertilization in deep-sea squid. They mate with any other squid the encounter, male or female. This unusual behaviour, they...
From Schneier on Security
Man-in-the-Middle Attack Against SSL 3.0/TLS 1.0
It's the Browser Exploit Against SSL/TLS Tool, or BEAST: The tool is based on a blockwise-adaptive chosen-plaintext attack, a man-in-the-middle approach that injects...
From Schneier on Security
Three Emerging Cyber Threats
On Monday I participated a panel at the Information Systems Forum in Berlin. The moderator asked us what the top three emerging threats were in cyberspace. I...
From Schneier on Security
An Interesting Software Liability Proposal
This proposal is worth thinking about. Clause 1. If you deliver software with complete and buildable source code and a license that allows disabling any functionality...
From Schneier on Security
U.S.-Australia Cyberwar Treaty
The long-standing ANZUS military treaty now includes cyberspace attacks: According to Reuters, the decision was made in discussions between the two countries this...
From Schneier on Security
Shifting Risk Instead of Reducing Risk
Risks of teen driving: For more than a decade, California and other states have kept their newest teen drivers on a tight leash, restricting the hours when they...
From Schneier on Security
Complex Electronic Banking Fraud in Malaysia
The interesting thing about this attack is how it abuses a variety of different security systems. Investigations revealed that the syndicate members had managed...
From Schneier on Security
Pretty Creepy Type of Cyberstalking
Luis "Guicho" Mijangos, "sextortionist."
From Schneier on Security
The Effectiveness of Plagiarism Detection Software
As you'd expect, it's not very good: But this measure [Turnitin] captures only the most flagrant form of plagiarism, where passages are copied from one document...
From Schneier on Security
Identifying Speakers in Encrypted Voice Communication
I've already written how it is possible to detect words and phrases in encrypted VoIP calls. Turns out it's possible to detect speakers as well: Abstract: Most...
From Schneier on Security
Domain-in-the-Middle Attacks
It's an easy attack. Register a domain that's like your target except for a typo. So it would be countrpane.com instead of counterpane.com, or mailcounterpane...
From Schneier on Security
Sharing Security Information and the Prisoner's Dilemma
New paper: Dengpan Liu, Yonghua Ji, and Vijay Mookerjee (2011), "Knowledge Sharing and Investment Decisions in Information Security," Decision Support Systems,...
From Schneier on Security
A Status Report: "Liars and Outliers"
It's been a long hard year, but the book is almost finished. It's certainly the most difficult book I've ever written, mostly because I've had to learn academic...
From Schneier on Security
Risk Tolerance and Culture
This is an interesting study on cultural differences in risk tolerance. The Cultures of Risk Tolerance Abstract: This study explores the links between culture...
From Schneier on Security
TSA Administrator John Pistole on the Future of Airport Security
There's a lot here that's worth watching. He talks about expanding behavioral detection. He talks about less screening for "trusted travelers." So, what do the...
From Schneier on Security
Human Pattern-Matching Failures in Airport Screening
I've written about this before: the human brain just isn't suited to finding rare anomalies in a screening situation. The Role of the Human Operator in Image-Based...
From Schneier on Security