Category: Security technology

Auto Added by WPeMatico

Detecting When a Smartphone Has Been Compromised

Posted on By infossl
academicpapers, malware, phones, Security technology, securityengineering, tracking

Andrew “bunnie” Huang and Edward Snowden have designed a smartphone case that detects unauthorized transmissions by the phone. Paper. Three news articles. Looks like a clever design. Of course, it has to be outside the device; otherwise, it could be compromised along with the device. Note that this is still in the research design stage; … Read More “Detecting When a Smartphone Has Been Compromised” »

More on the Vulnerabilities Equities Process

Posted on By infossl
dmca, hacking, nationalsecuritypolicy, Security technology, vulnerabilities

The Open Technology Institute of the New America Foundation has released a policy paper on the vulnerabilities equities process: “Bugs in the System: A Primer on the Software Vulnerability Ecosystem and its Policy Implications.” Their policy recommendations: Minimize participation in the vulnerability black market. Establish strong, clear procedures for disclosure when it discovers and acquires … Read More “More on the Vulnerabilities Equities Process” »

Everyone Wants You To Have Security, But Not from Them

Posted on By infossl
adware, computersecurity, dataandgoliath, fbi, google, lenovo, nsa, privacy, Security technology, securitypolicies, spyware, surveillance

In December, Google’s Executive Chairman Eric Schmidt was interviewed at the CATO Institute Surveillance Conference. One of the things he said, after talking about some of the security measures his company has put in place post-Snowden, was: “If you have important information, the safest place to keep it is in Google. And I can assure … Read More “Everyone Wants You To Have Security, But Not from Them” »

Snowden-Greenwald-Poitras AMA

Posted on By infossl
edwardsnowden, interviews, Security technology

Glenn Greenwald, Laura Poitras, and Edward Snowden did an “Ask Me Anything” on Reddit. Point out anything interesting in the comments. And note that Snowden mentioned my new book: One of the arguments in a book I read recently (Bruce Schneier, “Data and Goliath”), is that perfect enforcement of the law sounds like a good … Read More “Snowden-Greenwald-Poitras AMA” »

"Surreptitiously Weakening Cryptographic Systems"

Posted on By infossl
academicpapers, backdoors, cryptanalysis, cryptography, sabotage, schneiernews, Security technology

New paper: “Surreptitiously Weakening Cryptographic Systems,” by Bruce Schneier, Matthew Fredrikson, Tadayoshi Kohno, and Thomas Ristenpart. Abstract: Revelations over the past couple of years highlight the importance of understanding malicious and surreptitious weakening of cryptographic systems. We provide an overview of this domain, using a number of historical examples to drive development of a weaknesses … Read More “"Surreptitiously Weakening Cryptographic Systems"” »

AT&T Charging Customers to Not Spy on Them

Posted on By infossl
att, privacy, Security technology, surveillance

AT&T is charging a premium for gigabit Internet service without surveillance: The tracking and ad targeting associated with the gigabit service cannot be avoided using browser privacy settings: as AT&T explained, the program “works independently of your browser’s privacy settings regarding cookies, do-not-track and private browsing.” In other words, AT&T is performing deep packet inspection, … Read More “AT&T Charging Customers to Not Spy on Them” »