The 2018 IEEE Security & Privacy Conference is in May but they’ve posted their full proceedings and it’s better to grab them early than to wait for it to become part of a paid journal offering.
There are alot of papers. Not all match my interests but (fortunately?) many did and I’ve filtered down a list of the more interesting (to me) ones. It’s encouraging to see academic cybersecurity researchers branching out across a whole host of areas.
I can’t promise a the morning paper-esque daily treatment of these on the blog but I’ll likely exposit a few of them over the coming weeks. I’ve emoji’d a few that stood out. Order is the order I read them in (no other meaning to the order).
- Stealing Hyperparameters in Machine Learning
- ? On the Economics of Offline Password Cracking
- ??? Hackers vs. Testers: A Comparison of Software Vulnerability Discovery Processes
- ? Privacy Risks with Facebook’s PII-based Targeting: Auditing a Data Broker’s Advertising Interface
- ? Tracking Certificate Misissuance in the Wild
- ? Computer Security and Privacy for Refugees in the United States
- ⚡️ Enumerating Active IPv6 Hosts for Large-scale Security Scans via DNSSEC-signed Reverse Zones
- The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators
- Mobile Application Web API Reconnaissance: Web-to-Mobile Inconsistencies & Vulnerabilities
- Tracking Ransomware End-to-end
- Surveylance: Automatically Detecting Online Survey Scams
- When Your Fitness Tracker Betrays You: Quantifying the Predictability of Biometric Features Across Contexts
- Speechless: Analyzing the Threat to Speech Privacy from Smartphone Motion Sensors
- A Formal Treatment of Accountable Proxying over TLS
- SoK: “Plug & Pray” Today – Understanding USB Insecurity in Versions 1 through C
- Oblix: An Efficient Oblivious Search Index
- A Machine Learning Approach To Prevent Malicious Calls Over Telephony Networks
- Understanding Linux Malware