Reflecting on Two Years of SPLICE Achievements

This past month, team members from all seven SPLICE institutions traveled to Hanover, New Hampshire, to meet in-person for the first time since the start of the project in October of 2020. Our annual meeting lasted two and a half days, with the first day including team professional development events, research-based meetings, and a poster… Read More Reflecting on Two Years of SPLICE Achievements

SPLICE Paper on Engaging Students and Teachers in IoT Security Research

The Cybersecurity Assurance & Policy (CAP) Center at Morgan State University hosted two undergraduate engineering students and a high school STEM teacher to conduct IoT security research throughout summer ’21. The goal was for students to develop their team-building and leadership skills while working on an assigned research project and for the teacher to be… Read More SPLICE Paper on Engaging Students and Teachers in IoT Security Research

New SPLICE Paper: ‘Users Can Deduce Sensitive Locations Protected by Privacy Zones on Fitness Tracking Apps’

Fitness tracking applications allow athletes to record and share their exercises online, including GPS routes of their activities. However, sharing mobility data potentially raises real-world privacy and safety risks. One strategy to mitigate that risk is a “Privacy Zone,” which conceals portions of the exercise routes that fall within a certain radius of a user-designated… Read More New SPLICE Paper: ‘Users Can Deduce Sensitive Locations Protected by Privacy Zones on Fitness Tracking Apps’

New SPLICE Publication: ‘The Role of Product Reviewers in Evaluating Security and Privacy’

As consumers adopt new Internet-connected devices, apps, and other software, they are often exposed to security and privacy vulnerabilities that they likely do not have time, expertise, or incentive to evaluate themselves. Can professionals and institutions help by evaluating the security and privacy of these products on behalf of consumers? As a first step, we… Read More New SPLICE Publication: ‘The Role of Product Reviewers in Evaluating Security and Privacy’

New SPLICE Paper: ‘SoK: Cryptographic Confidentiality of Data on Mobile Devices’

Mobile devices have become an indispensable component of modern life. With high storage capacity, these devices can store large amounts of sensitive personal data, making them a high-value target for data theft, and a valuable source of forensic data for law-enforcement agencies. Over the past several years, device and cloud service providers have deployed a… Read More New SPLICE Paper: ‘SoK: Cryptographic Confidentiality of Data on Mobile Devices’

IBM partners with MSU to Establish Cybersecurity Leadership Center

In a recent press release, “IBM Chairman and CEO Arvind Krishna pledged for IBM to partner with HBCUs to establish Cybersecurity Leadership Centers, with the goal of building a more diverse U.S. cyber workforce.” Morgan State University (MSU) is one of the first six of more than 20 Cybersecurity Leadership Centers. “Participant universities will have access to a… Read More IBM partners with MSU to Establish Cybersecurity Leadership Center

Recap: Workshop on IoT Policy Issues

*Posted on behalf of Dr. Susan Landau (Tufts) and Dr. David Choffnes (Northeastern; ProperData faculty)* The workshop began with a discussion of privacy principles, first the Fair Information Practice Principles (FIPPs), which undergird both US privacy regulation (especially states) and also Europe’s General Data Protection Regulation. At the national level, US privacy law is sectoral… Read More Recap: Workshop on IoT Policy Issues