SPLICE Paper on Engaging Students and Teachers in IoT Security Research

The Cybersecurity Assurance & Policy (CAP) Center at Morgan State University hosted two undergraduate engineering students and a high school STEM teacher to conduct IoT security research throughout summer ’21. The goal was for students to develop their team-building and leadership skills while working on an assigned research project and for the teacher to be… Read More SPLICE Paper on Engaging Students and Teachers in IoT Security Research

New SPLICE Paper: ‘Users Can Deduce Sensitive Locations Protected by Privacy Zones on Fitness Tracking Apps’

Fitness tracking applications allow athletes to record and share their exercises online, including GPS routes of their activities. However, sharing mobility data potentially raises real-world privacy and safety risks. One strategy to mitigate that risk is a “Privacy Zone,” which conceals portions of the exercise routes that fall within a certain radius of a user-designated… Read More New SPLICE Paper: ‘Users Can Deduce Sensitive Locations Protected by Privacy Zones on Fitness Tracking Apps’

New SPLICE Publication: ‘The Role of Product Reviewers in Evaluating Security and Privacy’

As consumers adopt new Internet-connected devices, apps, and other software, they are often exposed to security and privacy vulnerabilities that they likely do not have time, expertise, or incentive to evaluate themselves. Can professionals and institutions help by evaluating the security and privacy of these products on behalf of consumers? As a first step, we… Read More New SPLICE Publication: ‘The Role of Product Reviewers in Evaluating Security and Privacy’

New SPLICE Paper: ‘SoK: Cryptographic Confidentiality of Data on Mobile Devices’

Mobile devices have become an indispensable component of modern life. With high storage capacity, these devices can store large amounts of sensitive personal data, making them a high-value target for data theft, and a valuable source of forensic data for law-enforcement agencies. Over the past several years, device and cloud service providers have deployed a… Read More New SPLICE Paper: ‘SoK: Cryptographic Confidentiality of Data on Mobile Devices’

New SPLICE Paper on Detecting Electronic Devices in Homes Using Harmonic Radar Technology

Phones, cameras, internet websites, and other devices constantly collect user data. The advent of so-called ‘Smart Things’ enables increasingly sensitive data to be collected inside the most private of spaces: the home. The first step in helping users regain control of their information that is collected inside their home is to alert them to the… Read More New SPLICE Paper on Detecting Electronic Devices in Homes Using Harmonic Radar Technology

New SPLICE paper on Engaging Underrepresented Students in Cybersecurity

To increase minority students’ participation, particularly African Americans in cyber fields, STEM engineering education requires a new approach to student learning. Students learn best when they are actively involved in the learning process. The concept of gamification is an emerging alternative approach that adds game elements to traditional instruction, engaging students in learning engineering concepts.… Read More New SPLICE paper on Engaging Underrepresented Students in Cybersecurity

New SPLICE Position Paper: ‘Tussles in IoT Space: Crucial Considerations for Consumer Devices’

Executive Order 14028 issued in May of 2021 asked the National Institute of Standards and Technology (NIST) to “identify IoT cybersecurity criteria for a consumer labeling program,” as “the United States faces persistent and increasingly sophisticated malicious cyber campaigns that threaten the public sector, the private sector, and ultimately the American people’s security and privacy.”… Read More New SPLICE Position Paper: ‘Tussles in IoT Space: Crucial Considerations for Consumer Devices’

New SPLICE paper on Security and Privacy Attitudes

Many studies of mobile security and privacy are, for simplicity, limited to either only Android users or only iOS users. However, it is not clear whether there are systematic differences in the privacy and security knowledge or preferences of users who select these two platforms. Understanding these differences could provide important context about the generalizability… Read More New SPLICE paper on Security and Privacy Attitudes