The 4th ISSNet Summer School was held at Dalhousie University in Halifax this year. Each year, ISSNet graduate students from across Canada get together for a week of workshops about computer security. It is an opportunity to network with other security researchers and to learn about aspects of security that they may not have previously studied. This year, they learnt about a variety of topics from operating systems, to Canadian privacy laws, data mining and visualization, and industry security … [Read more...] about ISSNet Summer School – Halifax version
Conference
SOUPS and U-PriSM
Several people from our usable security research group went to SOUPS in Washington, DC this year. Gerardo presented a poster about our upcoming USENIX Security Captcha paper. He also presented a talk about some on-going captcha work on mobile devices at the U-PriSM workshop. The U-PriSM workshop was a success, with over 80 people attending. We kept the presentations short to allow for discussion, and this seems to have worked well. The audience had many questions, comments, and suggestions … [Read more...] about SOUPS and U-PriSM
U-PriSM program posted
The U-PriSM workshop program has now been posted. We hope to see you there on July 11 in Washington DC! … [Read more...] about U-PriSM program posted
Annual Symposium on Information Assurance
Ann Fry's paper showing the un-usability S/MIME through a cognitive walkthrough was recently presented at the Annual Symposium on Information Assurance (ASIA) Ann Fry, Sonia Chiasson, and Anil Somayaji (2012) Not Sealed But Delivered: The (Un)Usability of S/MIME Today, pp. 48-61. … [Read more...] about Annual Symposium on Information Assurance
GRAND 2012 Conference
We attended the GRAND annual conference in Montreal last week. Elizabeth Stobert was selected to give a presentation about passTiles, while Leah Zhang had as poster presenting her work on teaching users about password guessing attacks. … [Read more...] about GRAND 2012 Conference
U-PriSM deadline extended
We have extended the deadline for the U-PriSM workshop to May 18, 2012. If you are working on the Usable Privacy and Security of Mobile devices, consider submitting a paper and joining us at SOUPS in Washington, DC on July 11, 2012. … [Read more...] about U-PriSM deadline extended
ISSNet Annual Workshop
The ISSNet Annual Workshop was held in Kingston, ON last week. Several students from the lab presented their work. Hsin-Yi Chiang presented a poster about his work on authentication for mobile devices. Vanessa Boothroyd received honourable mention for her poster on the usable security of writing down passwords. Alain Forget gave talk on his learnability of authentication systems. … [Read more...] about ISSNet Annual Workshop
Usenix Security '12 paper accepted
We were very happy to hear that our Usenix Security'12 paper, "Security and Usability Challenges of Moving-Object CAPTCHAs: Decoding Codewords in Motion", has been accepted. The paper was a joint effort with Yi Xu, Jan-Michael Frahm, and Fabian Monrose from the University of North Carolina. On the Carleton side, Gerardo Reynaga, Paul van Oorschot, and I worked on the project. A copy of the paper will be available shortly. … [Read more...] about Usenix Security '12 paper accepted
U-PriSM workshop at SOUPS – CFP
Jaeyeon Jung from Microsoft and I are co-chairing a workshop on the Usable Privacy and Security of Mobile devices (U-PriSM). It will be held on July 11, 2012, in conjunction with SOUPS. The submission deadline for short papers and position papers is May 8, 2012, see the CFP for details. … [Read more...] about U-PriSM workshop at SOUPS – CFP
ISSNet Smartphone Workshop
I organized a small workshop today at Carleton on the topic of Smartphone Security and Privacy. Serge Egelman visited from the University of California Berkeley and he gave the keynote talk. He presented on the usable security of Android permissions. Other presenters included graduate students from Carleton and from the University of Toronto. … [Read more...] about ISSNet Smartphone Workshop