SPLICE Paper on Engaging Students and Teachers in IoT Security Research

The Cybersecurity Assurance & Policy (CAP) Center at Morgan State University hosted two undergraduate engineering students and a high school STEM teacher to conduct IoT security research throughout summer ’21. The goal was for students to develop their team-building and leadership skills while working on an assigned research project and for the teacher to be… Read More SPLICE Paper on Engaging Students and Teachers in IoT Security Research

September 15, 2022September 14, 2022 tinapavlovichLeave a comment

New SPLICE Paper: ‘Users Can Deduce Sensitive Locations Protected by Privacy Zones on Fitness Tracking Apps’

Fitness tracking applications allow athletes to record and share their exercises online, including GPS routes of their activities. However, sharing mobility data potentially raises real-world privacy and safety risks. One strategy to mitigate that risk is a “Privacy Zone,” which conceals portions of the exercise routes that fall within a certain radius of a user-designated… Read More New SPLICE Paper: ‘Users Can Deduce Sensitive Locations Protected by Privacy Zones on Fitness Tracking Apps’

August 25, 2022August 22, 2022 tinapavlovichLeave a comment

New SPLICE Publication: ‘The Role of Product Reviewers in Evaluating Security and Privacy’

As consumers adopt new Internet-connected devices, apps, and other software, they are often exposed to security and privacy vulnerabilities that they likely do not have time, expertise, or incentive to evaluate themselves. Can professionals and institutions help by evaluating the security and privacy of these products on behalf of consumers? As a first step, we… Read More New SPLICE Publication: ‘The Role of Product Reviewers in Evaluating Security and Privacy’

August 12, 2022August 9, 2022 tinapavlovichLeave a comment

New SPLICE Paper: ‘SoK: Cryptographic Confidentiality of Data on Mobile Devices’

Mobile devices have become an indispensable component of modern life. With high storage capacity, these devices can store large amounts of sensitive personal data, making them a high-value target for data theft, and a valuable source of forensic data for law-enforcement agencies. Over the past several years, device and cloud service providers have deployed a… Read More New SPLICE Paper: ‘SoK: Cryptographic Confidentiality of Data on Mobile Devices’

August 5, 2022 tinapavlovichLeave a comment

New SPLICE thesis: ‘TorSH: Obfuscating consumer Internet-of-Things traffic with a collaborative smart-home router network’

A network of smart-home routers working collaboratively to defend smart-device traffic from analysis by ISP-like adversaries.… Read More New SPLICE thesis: ‘TorSH: Obfuscating consumer Internet-of-Things traffic with a collaborative smart-home router network’

June 13, 2022 tinapavlovichLeave a comment

New SPLICE thesis: ‘SPLICEcube Architecture: An Extensible Wi-Fi Monitoring Architecture for Smart-Home Networks’

A central controller that brings a home’s smart devices under secure management.… Read More New SPLICE thesis: ‘SPLICEcube Architecture: An Extensible Wi-Fi Monitoring Architecture for Smart-Home Networks’

May 23, 2022 tinapavlovichLeave a comment

IBM partners with MSU to Establish Cybersecurity Leadership Center

In a recent press release, “IBM Chairman and CEO Arvind Krishna pledged for IBM to partner with HBCUs to establish Cybersecurity Leadership Centers, with the goal of building a more diverse U.S. cyber workforce.” Morgan State University (MSU) is one of the first six of more than 20 Cybersecurity Leadership Centers. “Participant universities will have access to a… Read More IBM partners with MSU to Establish Cybersecurity Leadership Center

May 18, 2022 tinapavlovichLeave a comment

Learn about SPLICE from PI David Kotz

Want a 10-minute rundown of SPLICE — who we are, a highlight of our recent research activities and accomplishments, and ongoing goals for the project? Check out the video below! The poster in the video, prepared for the NSF 2022 SaTC PI Meeting, can be found below:

May 2, 2022 tinapavlovichLeave a comment

Recap: Workshop on IoT Policy Issues

*Posted on behalf of Dr. Susan Landau (Tufts) and Dr. David Choffnes (Northeastern; ProperData faculty)* The workshop began with a discussion of privacy principles, first the Fair Information Practice Principles (FIPPs), which undergird both US privacy regulation (especially states) and also Europe’s General Data Protection Regulation. At the national level, US privacy law is sectoral… Read More Recap: Workshop on IoT Policy Issues

April 26, 2022 tinapavlovichLeave a comment

Upcoming Cybersecurity Webinar

SPLICE PI at Morgan State University, Kevin Kornegay, will be speaking about The Cybersecurity Assurance & Policy (CAP) Center at Morgan State and his team’s work at an upcoming University-Industry Demonstration Partnership (UIDP) webinar on Tuesday March 16, 2022 (1-2pm ET). Agenda Highlights: The inherent cybersecurity risks of the IoT are numerous and diverse. Embedded… Read More Upcoming Cybersecurity Webinar

March 11, 2022 tinapavlovichLeave a comment