Category: Uncategorized

Auto Added by WPeMatico

New National Cybersecurity Strategy

Posted on By infossl
cybersecurity, national security policy, Security technology, software liability, Uncategorized

Last week, the Biden Administration released a new National Cybersecurity Strategy (summary here). There is lots of good commentary out there. It’s basically a smart strategy, but the hard parts are always the implementation details. It’s one thing to say that we need to secure our cloud infrastructure, and another to detail what the means … Read More “New National Cybersecurity Strategy” »

Nick Weaver on Regulating Cryptocurrency

Posted on By infossl
Security technology, Uncategorized

Nicholas Weaver wrote an excellent paper on the problems of cryptocurrencies and the need to regulate the space—with all existing regulations. His conclusion: Regulators, especially regulators in the United States, often fear accusations of stifling innovation. As such, the cryptocurrency space has grown over the past decade with very little regulatory oversight. But fortunately for … Read More “Nick Weaver on Regulating Cryptocurrency” »

Side-Channel Attack against CRYSTALS-Kyber

Posted on By infossl
academic papers, cryptography, encryption, machine learning, quantum computing, quantum cryptography, Security technology, side-channel attacks, Uncategorized

CRYSTALS-Kyber is one of the public-key algorithms currently recommended by NIST as part of its post-quantum cryptography standardization process. Researchers have just published a side-channel attack—using power consumption—against an implementation of the algorithm that was supposed to be resistant against that sort of attack. The algorithm is not “broken” or “cracked”—despite headlines to the contrary—this … Read More “Side-Channel Attack against CRYSTALS-Kyber” »

Banning TikTok

Posted on By infossl
censorship, essays, national security policy, Security technology, social media, Uncategorized

Congress is currently debating bills that would ban TikTok in the United States. We are here as technologists to tell you that this is a terrible idea and the side effects would be intolerable. Details matter. There are several ways Congress might ban TikTok, each with different efficacies and side effects. In the end, all … Read More “Banning TikTok” »

Putting Undetectable Backdoors in Machine Learning Models

Posted on By infossl
academic papers, backdoors, machine learning, Security technology, Uncategorized

This is really interesting research from a few months ago: Abstract: Given the computational cost and technical expertise required to train machine learning models, users may delegate the task of learning to a service provider. Delegation of learning has clear benefits, and at the same time raises serious concerns of trust. This work studies possible … Read More “Putting Undetectable Backdoors in Machine Learning Models” »

Cyberwar Lessons from the War in Ukraine

Posted on By infossl
cyberattack, cyberwar, defense, infrastructure, reports, russia, Security technology, ukraine, Uncategorized

The Aspen Institute has published a good analysis of the successes, failures, and absences of cyberattacks as part of the current war in Ukraine: “The Cyber Defense Assistance Imperative ­ Lessons from Ukraine.” Its conclusion: Cyber defense assistance in Ukraine is working. The Ukrainian government and Ukrainian critical infrastructure organizations have better defended themselves and … Read More “Cyberwar Lessons from the War in Ukraine” »