We are happy to announce that our short paper, The MVP Web-based Authentication Framework, has been accepted for publication at Financial Cryptography 2011. … [Read more...] about FC short paper accepted
Conference
ACSAC 2011
We are happy to announce that we will be presenting several research projects at ACSAC 2011: Max Hlywa, a member of our usable security group, will be presenting a full paper entitled: Facing the Facts about Image Type in Recognition-Based Graphical Passwords by Hlywa, Patrick, and Biddle. And we have two posters presenting some of our very recent work: AuctionHero: a game to model security in context by Chiasson, Modi, and Biddle User-Choice Patterns in PassTiles Graphical Passwords by … [Read more...] about ACSAC 2011
E-Learn 2011
I will be attending E-Learn in October where I will present a brief paper on the initial design of our Auction Hero game to teach about online computer security, work done in collaboration with Manas Modi and Robert Biddle. While at the conference, I will also lead a roundtable discussion on uses of e-learning technologies for teaching computer security. … [Read more...] about E-Learn 2011
SOUPS 2011
We've just returned from another successful SOUPS conference. It was once again held at CMU this year and it was a mix of old and new, with parts of the conference held in their new Computer Science building and other parts held in familiar locations that we all know to be part of SOUPS. Robert and I held a tutorial on experimental design and statistics using R. We were happy for our ISSNet friends at UBC who won this year's Best Paper award for their work on Heuristics for IT security … [Read more...] about SOUPS 2011
ISSNet Summer School in Calgary
Last week was the ISSNet summer school, held at the University of Calgary this year. A day and a half was dedicated to information visualization. Sheelagh Carpendale gave a general introduction to the field of visualization and Robert Biddle presented about security visualizations in particular. Hands-on activities had everything testing their drawing skills as they came up with potential visualizations for datasets. … [Read more...] about ISSNet Summer School in Calgary
GRAND 2011 Conference
We've recently returned from beautiful Vancouver for the 2nd Annual GRAND Conference. We are part of projects on "Usable Privacy and Security for New Media Environments" and "Digital Games for Learning and Training". It was an opportunity to discuss on-going projects, get feedback from others in different disciplines, talk about research priorities, and plan for the next year. … [Read more...] about GRAND 2011 Conference
ISSNet Annual Workshop
We spent a week in Toronto for the ISSNet Annual Workshop. We heard updates on recent work on research projects in all three themes (Network-oriented Security, Software Systems-oriented Security, Human-oriented Security) and had plenty of opportunity to catch up and discuss research with members from other Universities and industry partners. Students presented posters of their on-going research projects. Invited talks by Nart Villeneuve from Trend Micro and by N. Asokan and Valtteri Niemi from … [Read more...] about ISSNet Annual Workshop
Back from FC’11
We just returned from Financial Cryptography '11 in St. Lucia. I was pleasantly surprised to see that several of the papers addressed human factors and usable security. Our workshop on Authentication was well-attended and generated lots of questions and discussion between attendees and panelists. And in between, I managed to get in lots of scuba diving. A great trip overall. … [Read more...] about Back from FC’11
ACSAC 2010
We've just returned from ACSAC 2010 in Austin, Texas. What a change from the winter weather in Canada! Another highlight was the "Security blankets" that they gave us instead of the usual conference bag. Elizabeth presented our paper on the first day. It was the only usable security paper at the conference, but there was lots of audience interest and questions. Tom Longstaff's invited talk about the experimental process and the importance of gathering real data resulted in lively … [Read more...] about ACSAC 2010
FC'11 Workshop on User Authentication
We are organizing a workshop on user authentication, co-located with Financial Cryptography 2011 in St. Lucia on March 4, 2011. The workshop will consist of invited talks and expert panels. A preliminary program is available and will be updated as details are finalized. Workshop on The Future of User Authentication and Authorization on the Web: Challenges in Current Practice, New Threats, and Research Directions Friday, March 4, 2011 --- St. Lucia … [Read more...] about FC'11 Workshop on User Authentication