Security and Privacy Research Lab

The New York Times Magazine has an excellent article discussing the consequences of a Web that never forgets. What happens when the innocent emails and Facebook posts you send today suddenly resurface 10 or 20 years later? Is there any way for users to proactively control the lifetimes of data stored on third-party Web services, like GMail, Facebook, and Flicker? Last year UW security and privacy researchers Roxana Geambasu and Amit Levy, along with faculty members Yoshi Kohno and Hank Levy, published an award-winning paper at 2009 USENIX Security describing a new approach for empowering users with such control. Their new direction direction, called Vanish, is featured in this article.

The IEEE Symposium on Security and Privacy (“The Oakland Conference”) is one of the flagship conferences for the computer security and privacy research community. Today all UW CSE affiliates (students, faculty, alumni, affiliate faculty) at Oakland decided to wear their UW CSE T-shirts. There was an impressive number of us there!

In the photo: Roxana Geambasu (UW CSE Ph.D. student), Tammy Denning (UW CSE Ph.D. student), David Molnar (MSR, teaching in UW CSE), Alexei Czeskis (UW CSE Ph.D. student), Franzi Roesner (UW CSE Ph.D. student), Stefan Savage (UW CSE Ph.D. alumnus, now UCSD CSE faculty), Steve Checkoway (UW CSE B.S. alumnus, now UCSD CSE Ph.D. student), Damon McCoy (UW CSE Ph.D. intern, now UCSD CSE postdoc), Karl Koscher (UW CSE Ph.D. student), Tadayoshi Kohno (UW CSE faculty), Gabriel Maganis (UW CSE B.S. alumnus, now UCD Ph.D. student), Charlie Reis (UW CSE Ph.D. alumnus, now Google Seattle), Miro Enev (UW CSE Ph.D. student), Vitaly Shmatikov (UW CSE B.S. alumnus, now UT Austin faculty).

UW security and privacy researchers Karl Koscher, Alexei Czeskis, Franzi Roesner, Shwetak Patel, and Yoshi Kohno, along with collaborators from the University of California San Diego led by (UW alumnus!) Stefan Savage, describe the results of an extensive experimental security analysis of a modern car in their paper at the 2010 IEEE Symposium on Security and Privacy. More information at the Center for Automotive Embedded Systems Security Web site and in articles in The New York Times, New Scientist, Technology Review, PC World, TechFlash, and Popular Mechanics.

This week UW security researcher Tamara Denning presented her study of patients, pacemakers, and security defenses at CHI 2010. A CNN reporter was in the audience and decided to write an article about her work. Tammy used semi-structured interviews with cardiac device patients to provide a scientifically-informed understanding of how different security solutions for wireless implantable medical devices interact with patients’ values. This work was in collaboration with Seattle Pacific University and the Beth Israel Deaconess Medical Center. The CNN article also features UW’s 2008 experimental security analysis of an implantable cardiac defibrillator (in collaboration with UMass and BIDMC) and discusses the points made in a recent New England Journal of Medicine perspective article (also in collaboration with BIDMC).