Paul G. Allen School of Computer Science & Engineering, University of Washington
“Keypad: An auditing file system for theft-prone devices,” a paper describing a new file system that enhances data security on mobile devices, has been named Best Student Paper at this year’s EuroSys 2011 conference. The paper was authored by UW CSE graduate students Roxana Geambasu and John P. John and UW CSE faculty members Steve Gribble, Yoshi Kohno, and Hank Levy.
Congratulations!
The UW CSE computer security competition team consisting of Alexei Czeskis (team captain), Karl Koscher (team co-founder), Ian Finder, Mary Pimenova, Cullen Walsh, Baron Oldenburg, Conrad Meyer, and Mark Jordan — coached by Melody Kadenko — just won the National Collegiate Cyber Defense Competition!
The finals, held April 9 and 10, featured 9 teams from across the nation — the winners of 9 regional competitions.
Congratulations!!!!!
Update (4.11.2011): The Seattle Times just wrote an article about the team’s win.
Update (4.13.2011): UW Today also wrote an article about the team.
UW CSE Security Lab member Karl Koscher just won the College of Engineering Ford Motor Company Fellowship. Congratulations Karl!
From Freedom to Tinker: “Today, the public learned of a previously undisclosed compromise of a trusted Certificate Authority — one of the entities that issues certificates attesting to the identity of “secure” web sites. Last week, Comodo quietly issued a command via its certificate revocation servers designed to tell browsers to no longer accept 9 certificates. …
“This implied that the certificates were likely malicious, and may even been used by a third-party to impersonate secure sites. …
“Clearly, something exceptional happened behind the scenes. Security hacker Jacob Appelbaum did some fantastic detective work using the EFF’s SSL Observatory data and discovered that all of the certificates in question originated from Comodo — perhaps from one of the many affiliated companies that issues certificates under Comodo’s authority via their ‘Registration Authority’ (RA) program. Evidently, someone had figured out how to successfully attack Comodo or one of their RAs, or had colluded with them in getting some invalid certs.”
Jacob Appelbaum is a UW Security and Privacy Lab researcher and a Tor developer. You can read more about Jacob’s discoveries here.
The UW CSE cyber defense competition team just won regionals! Congratulations to team members Alexei Czeskis (team captain), Ian Finder, Mark Jordan, Karl Koscher, Conrad Meyer, Baron Oldenburg, Mary Pimenova, and Cullen Walsh!
Update (4.7.2011): The Seattle Times has written an article about the team: “A team of eight University of Washington students will wage war this weekend against an expert force, defending their territory with stealth tactics and on-the-fly invention. But there are no physical weapons involved. There’s not even a physical battleground. For the fourth year in a row, the team will compete in the National Collegiate Cyber Defense Competition, in which teams from around the country attempt to shield a computer system from professional hackers aiming to cause havoc ranging from stealing trade secrets to turning home pages into random YouTube videos.”
Read the full article here.
The Associated Press and The New York Times broke the story, with additional coverage at Technology Review, PCWorld, Slashdot, Jamie Zawinski’s blog, Boing Boing, and The Volokh Conspiracy. More information at the CEASS site.
Congratulations to Karl Koscher, Alexei Czeskis, and Franziska Roesner, and their University of California at San Diego collaborators Steve Checkoway, Damon McCoy, Brian Kantor, and Danny Anderson, whose study of the vulnerability of modern cars to remote compromise was picked up by the press after being presented to the
UW security and privacy researchers had a strong showing at the 2011 Computers, Privacy & Data Protection conference in Brussels, Belgium, winning both the Multidisciplinary Privacy Award award and an honorable mention.
The goal of the CPDP multi-disciplinary privacy research award is to promote the need for and reward the results of multidisciplinary research, with the participation of the representative of diverse constituencies engaged in the investigation of the new ideas in data protection. Any paper published or accepted for publication in 2010 was eligible to win.
UW CSE grad student Alexei Czeskis and alumni Iva Dermendjieva and Hussein Yapit won the award for their work on balancing privacy and value tensions in mobile parenting technologies (published at SOUPS 2010 with co-authors Alan Borning, Batya Friedman, Brian Gill, and Tadayoshi Kohno). Alexei, pictured on the right, went to Belgium to receive the award.
UW CSE PhD student Tamara Denning won an honorable mention for her work on analyzing human values and security for wireless implantable medical devices (published at CHI 2010 with co-authors Alan Borning, Batya Friedman, Brian Gill, Tadayoshi Kohno, and William Maisel).
Congratulations!
UW security research Karl Koscher is featured in 16:9, Canada’s version of 60 Minutes. Karl is seen discussing his research on the security and privacy properties of the new US Passport Cards and Enhanced Drivers Licenses. Also featured in the video is UW PhD student Emily Fortuna.
Jacob Appelbaum‘s new vision — to create a “home Internet with anonymity built in” — is featured in MIT’s Technology Review magazine. Jacob is a UW security and privacy lab research scientist and core Tor developer. His key idea is to integrate the Tor anonymity system directly into wireless routers, thereby making strong privacy more accessible to the general public. UW security researcher Alexei Czeskis and others from the Tor community are also participating in this project. Good luck Jacob and Alexei with this new direction!
The New York Times Magazine has a detailed article on online anonymity and the Tor project. UW security researcher and Tor developer Jacob Appelbaum is extensively quoted. Originally funded by the U.S. Department of Defense, Tor now helps protect the privacy of hundreds of thousands of people around the world.