acm-header
Sign In

Communications of the ACM

Blogroll


bg-corner

Whitelisting vs. Blacklisting
From Schneier on Security

Whitelisting vs. Blacklisting

The whitelist/blacklist debate is far older than computers, and it's instructive to recall what works where. Physical security works generally on a whitelist model...

Security Theater, Illustrated
From Schneier on Security

Security Theater, Illustrated

Security theater, illustrated.

U.S. Strategy to Prevent Leaks is Leaked
From Schneier on Security

U.S. Strategy to Prevent Leaks is Leaked

As the article says, it doesn't get any more ironic than that. More importantly, it demonstrates how hard it is to keep secrets in the age of the Internet. ...

Security Theater in the Theater
From Schneier on Security

Security Theater in the Theater

This is a bit surreal: Additional steps are needed to prepare Broadway theaters in New York City for a potential WMD attack or other crisis, a New York state legislature...

Unsecured IP Security Cameras
From Schneier on Security

Unsecured IP Security Cameras

It's amazing how many security cameras are on the Internet, accessible by anyone. And it's not just for viewing; a lot of these cameras can be reprogrammed by...

Bioencryption
From Schneier on Security

Bioencryption

A group of students at the Chinese University in Hong Kong have figured out how to store data in bacteria. The article talks about how secure it is, and the students...

REAL-ID Implementation
From Schneier on Security

REAL-ID Implementation

According to this study, REAL-ID has not only been cheaper to implement than the states estimated, but also helpful in reducing fraud. States are finding that...

Hacking Tamper-Evident Devices
From Schneier on Security

Hacking Tamper-Evident Devices

At the Black Hat conference lasts week, Jamie Schwettmann and Eric Michaud presented some great research on hacking tamper-evident seals. Jamie Schwettmann and...

Brute-Force Safecracking
From Schneier on Security

Brute-Force Safecracking

This safecracking robot tries every possible combination, one after another: Combination space optimization is the key. By exploiting of the mechanical tolerances...

Blowfish in <i>Good Time Max</i>
From Schneier on Security

Blowfish in Good Time Max

This screen shot is from the movie "Good Time Max." 17 minutes and 52 seconds into the movie, it shows Blowfish being used as an encryption algorithm.

Cyberwar is Overhyped
From Schneier on Security

Cyberwar is Overhyped

A new report from the OECD says the threat of cyberwar has been grossly exaggerated. (Hey, that's what I said.) There are lots of news articles. Also worth...

The Legality of the Certificate Authority Trust Model
From Schneier on Security

The Legality of the Certificate Authority Trust Model

Interesting research: We looked at the standard legal documents issued by the certificate authorities or "CAs," including exemplar Subscriber Agreements (agreements...

Cost-Benefit Analysis of Full-Body Scanners
From Schneier on Security

Cost-Benefit Analysis of Full-Body Scanners

Research paper from Mark Stewart and John Mueller: The Transportation Security Administration (TSA) has been deploying Advanced Imaging Technologies (AIT) that...

Do Corporations Have a Right to Privacy?
From Schneier on Security

Do Corporations Have a Right to Privacy?

This week, the U.S. Supreme Court will hear arguments about whether or not corporations have the same rights to "personal privacy" that individuals do. Thisbrief...

Odd Art Forger
From Schneier on Security

Odd Art Forger

He's not in it for the money: Mr. Landis...has been one of the most prolific forgers American museums have encountered in years, writing, calling and presenting...

Movie-Plot Threats at the U.S. Capitol
From Schneier on Security

Movie-Plot Threats at the U.S. Capitol

This would make a great movie: Rep. Dan Burton, R-Ind., renewed his call for the installation of an impenetrable, see-through security shield around the viewing...

More Stuxnet News
From Schneier on Security

More Stuxnet News

This long New York Times article includes some interesting revelations. The article claims that Stuxnet was a joint Israeli-American project, and that its effectiveness...

New Revelations in the Mahmoud al-Mabhouh Assassination
From Schneier on Security

New Revelations in the Mahmoud al-Mabhouh Assassination

I wrote a lot last year about the assassination of Mahmoud al-Mabhouh in Dubai. There's a new article by an Israeli investigative journalist that tells the story...

Friday Squid Blogging: Deep-Sea Squid Video
From Schneier on Security

Friday Squid Blogging: Deep-Sea Squid Video

"Anthology of Deep-Sea Squids," from the Monterey Bay Aquarium.

Me on Airport Security
From Schneier on Security

Me on Airport Security

Last week, I spoke at an airport security conference hosted by EPIC: The Stripping of Freedom: A Careful Scan of TSA Security Procedures. Here's the video of my...
Sign In for Full Access
» Forgot Password? » Create an ACM Web Account