| USENIX Security '20 | Chaperone: Real-time Locking and Loss Prevention for Smartphones | Jiayi Chen, Urs Hengartner, Hassan Khan, Mohammad Mannan |
| USENIX Security '20 | Towards HTTPS Everywhere on Android: We Are Not There Yet | Andrea Possemato, Yanick Fratantonio |
| USENIX Security '20 | FANS: Fuzzing Android Native System Services via Automated Interface Analysis | Baozheng Liu, Chao Zhang, Guang Gong, Yishun Zeng, Haifeng Ruan, Jianwei Zhuge |
| USENIX Security '20 | From Needs to Actions to Secure Apps? The Effect of Requirements and Developer Practices on App Security | Charles Weir, Ben Hermann, Sascha Fahl |
| USENIX Security '20 | APEX: A Verified Architecture for Proofs of Execution on Remote Devices under Full Software Compromise | Ivan De Oliveira Nunes, Karim Eldefrawy, Norrathep Rattanavipanon, Gene Tsudik |
| USENIX Security '20 | A Tale of Two Headers: A Formal Analysis of Inconsistent Click-Jacking Protection on the Web | Stefano Calzavara, Sebastian Roth, Alvise Rabitti, Michael Backes, Ben Stock |
| USENIX Security '20 | PHMon: A Programmable Hardware Monitor and Its Security Use Cases | Leila Delshadtehrani, Sadullah Canakci, Boyou Zhou, Schuyler Eldridge, Ajay Joshi, Manuel Egele |
| USENIX Security '20 | PARTEMU: Enabling Dynamic Analysis of Real-World TrustZone Software Using Emulation | Lee Harrison, Hayawardh Vijayakumar, Rohan Padhye, Koushik Sen, Michael Grace |
| USENIX Security '20 | Who's Calling? Characterizing Robocalls through Audio and Metadata Analysis | Sathvik Prasad, Elijah Bouma-Sims, Athishay Kiran Mylappan, Bradley Reaves |
| USENIX Security '20 | Retrofitting Fine Grain Isolation in the Firefox Renderer | Shravan Narayan, Craig Disselkoen, Tal Garfinkel, Nathan Froyd, Eric Rahm, Sorin Lerner, Hovav Shacham, Deian Stefan |
| USENIX Security '20 | Sunrise to Sunset: Analyzing the End-to-end Life Cycle and Effectiveness of Phishing Attacks at Scale | Adam Oest, Penghui Zhang, Brad Wardman, Eric Nunes, Jakub Burgis, Ali Zand, Kurt Thomas, Adam Doupé, Gail-Joon Ahn |
| USENIX Security '20 | Achieving Keyless CDNs with Conclaves | Stephen Herwig, Christina Garman, Dave Levin |
| USENIX Security '20 | A Longitudinal and Comprehensive Study of the DANE Ecosystem in Email | Hyeonmin Lee, Aniketh Gireesh, Roland van Rijswijk-Deij, Taekyoung "Ted" Kwon, Taejoong Chung |
| USENIX Security '20 | Understanding security mistakes developers make: Qualitative analysis from Build It, Break It, Fix It | Daniel Votipka, Kelsey R. Fulton, James Parker, Matthew Hou, Michelle L. Mazurek, Michael Hicks |
| USENIX Security '20 | The Impact of Ad-Blockers on Product Search and Purchase Behavior: A Lab Experiment | Alisa Frik, Amelia Haviland, Alessandro Acquisti |
| USENIX Security '20 | Call Me Maybe: Eavesdropping Encrypted LTE Calls With ReVoLTE | David Rupprecht, Katharina Kohls, Thorsten Holz, Christina Pöpper |
| USENIX Security '20 | Frankenstein: Advanced Wireless Fuzzing to Exploit New Bluetooth Escalation Targets | Jan Ruge, Jiska Classen, Francesco Gringoli, Matthias Hollick |
| USENIX Security '20 | You Are What You Broadcast: Identification of Mobile and IoT Devices from (Public) WiFi | Lingjing Yu, Bo Luo, Jun Ma, Zhaoyu Zhou, Qingyun Liu |
| USENIX Security '20 | Empirical Measurement of Systemic 2FA Usability | Joshua Reynolds, Nikita Samarin, Joseph Barnes, Taylor Judd, Joshua Mason, Michael Bailey, Serge Egelman |
| USENIX Security '20 | What Twitter Knows: Characterizing Ad Targeting Practices, User Perceptions, and Ad Explanations Through Users' Own Twitter Data | Miranda Wei, Madison Stamos, Sophie Veys, Nathan Reitinger, Justin Goodman, Margot Herman, Dorota Filipczuk, Ben Weinshel, Michelle L. Mazurek, Blase Ur |
| USENIX Security '20 | A Comprehensive Quality Evaluation of Security and Privacy Advice on the Web | Elissa M. Redmiles, Noel Warford, Amritha Jayanti, Aravind Koneru, Sean Kross, Miraida Morales, Rock Stevens, Michelle L. Mazurek |
| USENIX Security '20 | Symbolic execution with SymCC: Don't interpret, compile! | Sebastian Poeplau, Aurélien Francillon |
| USENIX Security '20 | A Formal Analysis of IEEE 802.11's WPA2: Countering the Kracks Caused by Cracking the Counters | Cas Cremers, Benjamin Kiesl, Niklas Medinger |
| USENIX Security '20 | Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code | Fraser Brown, Deian Stefan, Dawson Engler |
| USENIX Security '20 | Breaking Secure Pairing of Bluetooth Low Energy Using Downgrade Attacks | Yue Zhang, Jian Weng, Rajib Dey, Yier Jin, Zhiqiang Lin, Xinwen Fu |
