acm-header
Sign In

Communications of the ACM

Blogroll


bg-corner

German SG-41 Encryption Machine Up for Auction
From Schneier on Security

German SG-41 Encryption Machine Up for Auction

A German auction house is selling an SG-41. It looks beautiful. Starting price is 75,000 euros. My guess is that it will sell for around 100K euros....

Thangrycat: A Serious Cisco Vulnerability
From Schneier on Security

Thangrycat: A Serious Cisco Vulnerability

Summary: Thangrycat is caused by a series of hardware design flaws within Cisco's Trust Anchor module. First commercially introduced in 2013, Cisco Trust Anchor...

Visiting the NSA
From Schneier on Security

Visiting the NSA

Yesterday, I visited the NSA. It was Cyber Command's birthday, but that's not why I was there. I visited as part of the Berklett Cybersecurity Project, run out...

Fingerprinting iPhones
From Schneier on Security

Fingerprinting iPhones

This clever attack allows someone to uniquely identify a phone when you visit a website, based on data from the accelerometer, gyroscope, and magnetometer sensors...

How Technology and Politics Are Changing Spycraft
From Schneier on Security

How Technology and Politics Are Changing Spycraft

Interesting article about how traditional nation-based spycraft is changing. Basically, the Internet makes it increasingly possible to generate a good cover story...

The Concept of "Return on Data"
From Schneier on Security

The Concept of "Return on Data"

This law review article by Noam Kolt, titled "Return on Data," proposes an interesting new way of thinking of privacy law. Abstract: Consumers routinely supply...

Friday Squid Blogging: On Squid Intelligence
From Schneier on Security

Friday Squid Blogging: On Squid Intelligence

Two links. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here...

Why Are Cryptographers Being Denied Entry into the US?
From Schneier on Security

Why Are Cryptographers Being Denied Entry into the US?

In March, Adi Shamir -- that's the "S" in RSA -- was denied a US visa to attend the RSA Conference. He's Israeli. This month, British citizen Ross Anderson couldn't...

More Attacks against Computer Automatic Update Systems
From Schneier on Security

More Attacks against Computer Automatic Update Systems

Last month, Kaspersky discovered that Asus's live update system was infected with malware, an operation it called Operation Shadowhammer. Now we learn that six...

Another Intel Chip Flaw
From Schneier on Security

Another Intel Chip Flaw

Remember the Spectre and Meltdown attacks from last year? They were a new class of attacks against complex CPUs, finding subliminal channels in optimization techniques...

WhatsApp Vulnerability Fixed
From Schneier on Security

WhatsApp Vulnerability Fixed

WhatsApp fixed a devastating vulnerability that allowed someone to remotely hack a phone by initiating a WhatsApp voice call. The recipient didn't even have to...

International Spy Museum Reopens
From Schneier on Security

International Spy Museum Reopens

The International Spy Museum has reopened in Washington, DC....

Upcoming Speaking Engagements
From Schneier on Security

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I'm speaking on "Securing a World of Physically Capable Computers" at Oxford University on Monday...

Cryptanalysis of SIMON-32/64
From Schneier on Security

Cryptanalysis of SIMON-32/64

A weird paper was posted on the Cryptology ePrint Archive (working link is via the Wayback Machine), claiming an attack against the NSA-designed cipher SIMON. You...

Reverse Engineering a Chinese Surveillance App
From Schneier on Security

Reverse Engineering a Chinese Surveillance App

Human Rights Watch has reverse engineered an app used by the Chinese police to conduct mass surveillance on Turkic Muslims in Xinjiang. The details are fascinating...

Friday Squid Blogging: Cephalopod Appreciation Society Event
From Schneier on Security

Friday Squid Blogging: Cephalopod Appreciation Society Event

Last Wednesday was a Cephalopod Appreciation Society event in Seattle. I missed it. As usual, you can also use this squid post to talk about the security stories...

Cryptanalyzing a Pair of Russian Encryption Algorithms
From Schneier on Security

Cryptanalyzing a Pair of Russian Encryption Algorithms

A pair of Russia-designed cryptographic algorithms -- the Kuznyechik block cipher and the Streebog hash function -- have the same flawed S-box that is almost certainly...

Another NSA Leaker Identified and Charged
From Schneier on Security

Another NSA Leaker Identified and Charged

In 2015, the Intercept started publishing "The Drone Papers," based on classified documents leaked by an unknown whistleblower. Today, someone who worked at the...

Amazon Is Losing the War on Fraudulent Sellers
From Schneier on Security

Amazon Is Losing the War on Fraudulent Sellers

Excellent article on fraudulent seller tactics on Amazon. The most prominent black hat companies for US Amazon sellers offer ways to manipulate Amazon's ranking...

Leaked NSA Hacking Tools
From Schneier on Security

Leaked NSA Hacking Tools

In 2016, a hacker group calling itself the Shadow Brokers released a trove of 2013 NSA hacking tools and related documents. Most people believe it is a front for...
Sign In for Full Access
» Forgot Password? » Create an ACM Web Account