Communications of the ACM
Refine your search:
How the “Frontier” Became the Slogan of Uncontrolled AI
Artificial intelligence (AI) has been billed as the next frontier of humanity: the newly available expanse whose exploration …
From Schneier on Security
Isaac Asimov on Security Theater
A great find: In his 1956 short story, "Let's Get Together," Isaac Asimov describes security measures proposed to counter a terrorist threat: "Consider further...
From Schneier on Security
HTC Android Vulnerability
Custom HTC firmware breaks standard permissions and allows rogue apps to access location, address book, and account info without authorization.
From Schneier on Security
Friday Squid Blogging: Interesting Squid Recipes
Plus a slide show of pretty dishes.
From Schneier on Security
Insecure Chrome Extensions
An analysis of extensions to the Chrome browser shows that 25% of them are insecure: We reviewed 100 Chrome extensions and found that 27 of the 100 extensions...
From Schneier on Security
Problems with Mac OS X Lion Passwords
Seems like some dumb mistakes. News article.
From Schneier on Security
Tor Arms Race
Iran blocks Tor, and Tor releases a workaround on the same day. How did the filter work technically? Tor tries to make its traffic look like a web browser talking...
From Schneier on Security
Friday Squid Blogging: Sex Life of Deep-Sea Squid
There's evidence of indiscriminate fertilization in deep-sea squid. They mate with any other squid the encounter, male or female. This unusual behaviour, they...
From Schneier on Security
Man-in-the-Middle Attack Against SSL 3.0/TLS 1.0
It's the Browser Exploit Against SSL/TLS Tool, or BEAST: The tool is based on a blockwise-adaptive chosen-plaintext attack, a man-in-the-middle approach that injects...
From Schneier on Security
Three Emerging Cyber Threats
On Monday I participated a panel at the Information Systems Forum in Berlin. The moderator asked us what the top three emerging threats were in cyberspace. I...
From Schneier on Security
An Interesting Software Liability Proposal
This proposal is worth thinking about. Clause 1. If you deliver software with complete and buildable source code and a license that allows disabling any functionality...
From Schneier on Security
U.S.-Australia Cyberwar Treaty
The long-standing ANZUS military treaty now includes cyberspace attacks: According to Reuters, the decision was made in discussions between the two countries this...
From Schneier on Security
Shifting Risk Instead of Reducing Risk
Risks of teen driving: For more than a decade, California and other states have kept their newest teen drivers on a tight leash, restricting the hours when they...
From Schneier on Security
Complex Electronic Banking Fraud in Malaysia
The interesting thing about this attack is how it abuses a variety of different security systems. Investigations revealed that the syndicate members had managed...
From Schneier on Security
Pretty Creepy Type of Cyberstalking
Luis "Guicho" Mijangos, "sextortionist."
From Schneier on Security
The Effectiveness of Plagiarism Detection Software
As you'd expect, it's not very good: But this measure [Turnitin] captures only the most flagrant form of plagiarism, where passages are copied from one document...
From Schneier on Security
Identifying Speakers in Encrypted Voice Communication
I've already written how it is possible to detect words and phrases in encrypted VoIP calls. Turns out it's possible to detect speakers as well: Abstract: Most...
From Schneier on Security
Domain-in-the-Middle Attacks
It's an easy attack. Register a domain that's like your target except for a typo. So it would be countrpane.com instead of counterpane.com, or mailcounterpane...
From Schneier on Security