Search results

  1. CTF: State-of-the-Art and Building the Next Generation

    Proposed herein is a new game engine which addresses these shortcomings. This paper details the ...

    admin - December 7, 2021 - 12:44 am

  2. Live Lesson: Labtainers: A Docker-based Framework for Cybersecurity Labs

    Cynthia E. Irvine, Michael F. Thompson, Michael McCarrin, and Jean Khosalim, Naval Postgraduate School Successful lab designs are a valuable resource that should be re-used and shared among educators and between institutions. A collaborative, community-so ...

    admin - December 7, 2021 - 12:44 am

  3. Live Lesson: The EDURange Framework and a Movie-themed Exercise in Network Reconnaissance

    engaging. This short paper describes both the EDURange framework and the Total Recon exercise. Richard ...

    admin - December 7, 2021 - 12:44 am

  4. Shell We Play A Game? CTF-as-a-service for Security Education

    the creation of an Attack/Defense CTF as simple as clicking a few buttons. In this paper, we describe ...

    arnold - December 7, 2021 - 12:44 am

  5. Learning System-assigned Passwords: A Preliminary Study on the People with Learning Disabilities

    Sonali Tukaram Marne, University of Texas at Arlington; Mahdi Nasrullah Al-Ameen, Clemson University; Matthew Wright, Rochester Institute of Technology With an increase in cyber attacks, including online password guessing attacks, system-assigned password ...

    michele - December 7, 2021 - 6:57 pm

  6. Victim Privacy in Crowdsourcing Based Public Safety Reporting: A Case Study of LiveSafe

    issues in crowdsourcing based reporting systems. In this paper, we conducted a case study with LiveSafe ...

    michele - December 7, 2021 - 6:57 pm

  7. Formal Mental Models for Inclusive Privacy and Security

    privacy and security concerns. This paper will suggest a strategy to meet this challenge, drawing on ...

    michele - December 7, 2021 - 6:57 pm

  8. You Want Me To Do What? A Design Study of Two-Factor Authentication Messages

    Elissa M. Redmiles, Everest Liu, and Michelle L. Mazurek, University of Maryland Security messages that ask users to adopt new behaviors can be a crucial aspect of users' security decision-making. Prior work has focused extensively on how to design w ...

    michele - December 7, 2021 - 6:57 pm

  9. Smartwatches Locking Methods: A Comparative Study

    smartwatches may su er from the fat- finger problem and is currently unknown. In this paper, we present the ...

    michele - December 7, 2021 - 6:57 pm

  10. A Gamified Approach to Improve Users’ Memorability of Fall-back Authentication

    to retrieve forgotten passwords. This paper proposes a game design which aims to improve usability of ...

    michele - December 7, 2021 - 6:57 pm

  11. On the Design of Distributed Adaptive Authentication Systems

    neglecting the huge body of research on adaptation. In this position paper, we posit the necessity to apply ...

    michele - December 7, 2021 - 6:57 pm

  12. Touchscreen Biometrics Across Multiple Devices

    software characteristics such as form factor and virtual keyboard layout. This paper presents an initial ...

    michele - December 7, 2021 - 6:57 pm

  13. Modeling Aggregate Security with User Agents that Employ Password Memorization Techniques

    Christopher Novak, Department of Computer Science, Dartmouth College; Jim Blythe, Information Sciences Institute, University of Southern California; Ross Koppel, Department of Sociology, University of Pennsylvania; Vijay Kothari and Sean Smith, Department ...

    michele - December 7, 2021 - 6:57 pm

  14. Augmenting Centralized Password Management with Application-Specific Passwords

    of the user's master password. In this paper, we describe a new approach to enhance centralized ...

    michele - December 7, 2021 - 6:57 pm

  15. "I want my money back!" Limiting Online Password-Guessing Financially

    Maximilian Golla, Daniel V. Bailey, and Markus Dürmuth, Ruhr-University Bochum Online password guessing attacks are a serious threat to the integrity of online accounts. A common defense is rate-limiting, either by slowing down or blocking connections, o ...

    michele - December 7, 2021 - 6:57 pm

  16. Folk Risk Analysis: Factors Influencing Security Analysts’ Interpretation of Risk

    Andrew M’manga, Shamal Faily, and John McAlaney, Bournemouth University; Christopher Williams, Defence Science and Technology Laboratory There are several standard approaches to risk analysis recommended for use in information security, however, the actua ...

    michele - December 7, 2021 - 7:57 pm

  17. The Shadow Warriors: In the no man’s land between industrial control systems and enterprise IT systems

    the Purdue model, tend to abstract away such complexities. In this paper, we report on initial ...

    michele - December 7, 2021 - 7:57 pm

  18. Skills and Characteristics of Successful Cybersecurity Advocates

    Julie Haney and Wayne Lutters, University of Maryland, Baltimore County Cybersecurity advocates attempt to counter the tsunami of cyber attacks by promoting security best practices and encouraging security technology adoption. However, little is known abo ...

    michele - December 7, 2021 - 7:57 pm

  19. A Proposed Visualization for Vulnerability Scan Data

    provide actionable data. In this paper, we propose a new way to visualize vulnerability scan data by ...

    michele - December 7, 2021 - 7:57 pm

  20. Ask Me Anything: A Conversational Interface to Augment Information Security Workers

    tasks to turn this data deluge into actionable intelligence. In this paper we present Artemis, ... work flows. In this paper, we will discuss our user-centric design methodology, feedback from user ...

    michele - December 7, 2021 - 7:57 pm

  21. Comparing Educational Approaches to Secure programming: Tool vs. TA

    Madiha Tabassum, Stacey Watson, and Heather Richter Lipford, University of North Carolina at Charlotte The cause of many security problems is vulnerabilities in the underlying code. These vulnerabilities are the result of security mistakes made by program ...

    michele - December 7, 2021 - 7:57 pm

  22. Measuring the Effectiveness of Embedded Phishing Exercises

    effective, and if reported results are statistically reliable. In this paper, we conduct a systematic ...

    admin - December 7, 2021 - 6:53 am

  23. Malicious Browser Extensions at Scale: Bridging the Observability Gap between Web Site and Browser

    when identified. In this paper we describe an approach used at Facebook for dealing with this problem. ...

    admin - December 7, 2021 - 6:53 am

  24. Where art thou, Eve? Experiences laying traps for Internet eavesdroppers

    Tavish Vaidya, Eric Burger, Micah Sherr, and Clay Shields, Georgetown University This paper ... our information was acted upon by an eavesdropper. This paper details the numerous challenges— ...

    admin - December 7, 2021 - 6:53 am

  25. Pains, Gains and PLCs: Ten Lessons from Building an Industrial Control Systems Testbed for Security Research

    from scratch, learning through a painful process of trial and error. In this paper we address this gap ...

    admin - December 7, 2021 - 6:53 am

Pages