Tag: conference
-
NDSS 2025 A Comprehensive Analysis of Rationales and Their Effects on Users’ Permission Decisions
Authors, Creators & Presenters: Yusra Elbitar (CISPA Helmholtz Center for Information Security), Alexander Hart (CISPA Helmholtz Center for Information Security), Sven Bugiel (CISPA Helmholtz Center for Information Security) PAPER The Power of Words: A Comprehensive Analysis of Rationales and Their Effects on Users’ Permission Decisions Rationales offer a method for app developers to convey their…
-
NDSS 2025 A Comprehensive Analysis of Rationales and Their Effects on Users’ Permission Decisions
Authors, Creators & Presenters: Yusra Elbitar (CISPA Helmholtz Center for Information Security), Alexander Hart (CISPA Helmholtz Center for Information Security), Sven Bugiel (CISPA Helmholtz Center for Information Security) PAPER The Power of Words: A Comprehensive Analysis of Rationales and Their Effects on Users’ Permission Decisions Rationales offer a method for app developers to convey their…
-
NDSS 2025 Exploring User Perceptions Of Security Auditing In The Web3 Ecosystem
SESSION Session 1C: Privacy & Usability 1 Authors, Creators & Presenters: Molly Zhuangtong Huang (University of Macau), Rui Jiang (University of Macau), Tanusree Sharma (Pennsylvania State University), Kanye Ye Wang (University of Macau) PAPER Exploring User Perceptions of Security Auditing in the Web3 Ecosystem In the rapidly evolving Web3 ecosystem, transparent auditing has emerged as…
-
NDSS 2025 Exploring User Perceptions Of Security Auditing In The Web3 Ecosystem
SESSION Session 1C: Privacy & Usability 1 Authors, Creators & Presenters: Molly Zhuangtong Huang (University of Macau), Rui Jiang (University of Macau), Tanusree Sharma (Pennsylvania State University), Kanye Ye Wang (University of Macau) PAPER Exploring User Perceptions of Security Auditing in the Web3 Ecosystem In the rapidly evolving Web3 ecosystem, transparent auditing has emerged as…
-
UK Organisations Trail Global Peers on Zero Trust Adoption, Research Finds
A new research report by Keeper Security has revealed global insights from security professionals on the state of cybersecurity. The report, entitled Identity, AI and Zero Trust: Cybersecurity Perspectives from Infosecurity Europe, Black Hat USA and it-sa, found that professionals across the UK, the United States and Germany agreed that Artificial Intelligence (AI) is reshaping…
-
NDSS 2025 UI-CTX: Understanding UI Behaviors With Code Contexts For Mobile Applications
SESSION Session 1C: Privacy & Usability 1 Authors, Creators & Presenters: Jiawei Li (Beihang University & National University of Singapore), Jiahao Liu (National University of Singapore), Jian Mao (Beihang University), Jun Zeng (National University of Singapore), Zhenkai Liang (National University of Singapore) PAPER UI-CTX: Understanding UI Behaviors with Code Contexts for Mobile Applications Many mobile…
-
TechTalk: Mit den richtigen Tools lassen sich KI-Bedrohungen in M365-Umgebungen erkennen
Auch Microsoft 365-Anwender:innen und -Plattformen sind diversen Cyberbedrohungen ausgesetzt, speziell durch den vermehrten Einsatz von KI-Technologien. Wie sich das im Praxisalltag von Unternehmen auswirken kann und welche Antworten der Sicherheitsanbieter Hornetsecurity auf diese KI-Bedrohungen hat, darüber durften wir auf der Sicherheitsveranstaltung it-sa 2025 mit Dr. Yvonne Bernard sprechen. Herausgekommen ist dieses knapp 2-minütige Video. First…
-
TechTalk: Mit den richtigen Tools lassen sich KI-Bedrohungen in M365-Umgebungen erkennen
Auch Microsoft 365-Anwender:innen und -Plattformen sind diversen Cyberbedrohungen ausgesetzt, speziell durch den vermehrten Einsatz von KI-Technologien. Wie sich das im Praxisalltag von Unternehmen auswirken kann und welche Antworten der Sicherheitsanbieter Hornetsecurity auf diese KI-Bedrohungen hat, darüber durften wir auf der Sicherheitsveranstaltung it-sa 2025 mit Dr. Yvonne Bernard sprechen. Herausgekommen ist dieses knapp 2-minütige Video. First…
-
NDSS 2025 Revealing The Black Box Of Device Search Engine Session 1B: Internet Security
Tags: access, conference, framework, Internet, malicious, mitigation, network, privacy, risk, service, strategy, technology, tool, vulnerabilityAuthors, Creators & Presenters: Mengying Wu (Fudan University), Geng Hong (Fudan University), Jinsong Chen (Fudan University), Qi Liu (Fudan University), Shujun Tang (QI-ANXIN Technology Research Institute; Tsinghua University), Youhao Li (QI-ANXIN Technology Research Institute), Baojun Liu (Tsinghua University), Haixin Duan (Tsinghua University; Quancheng Laboratory), Min Yang (Fudan University) PAPER Revealing the Black Box of Device…
-
NDSS 2025 Secure IP Address Allocation At Cloud Scale Session 1B: Internet Security
Authors, Creators & Presenters: Eric Pauley (University of Wisconsin–Madison), Kyle Domico (University of Wisconsin–Madison), Blaine Hoak (University of Wisconsin–Madison), Ryan Sheatsley (University of Wisconsin–Madison), Quinn Burke (University of Wisconsin–Madison), Yohan Beugin (University of Wisconsin–Madison), Engin Kirda (Northeastern University), Patrick McDaniel (University of Wisconsin–Madison) PAPER Secure IP Address Allocation at Cloud Scale Public clouds necessitate dynamic…
-
NDSS 2025 Secure IP Address Allocation At Cloud Scale Session 1B: Internet Security
Authors, Creators & Presenters: Eric Pauley (University of Wisconsin–Madison), Kyle Domico (University of Wisconsin–Madison), Blaine Hoak (University of Wisconsin–Madison), Ryan Sheatsley (University of Wisconsin–Madison), Quinn Burke (University of Wisconsin–Madison), Yohan Beugin (University of Wisconsin–Madison), Engin Kirda (Northeastern University), Patrick McDaniel (University of Wisconsin–Madison) PAPER Secure IP Address Allocation at Cloud Scale Public clouds necessitate dynamic…
-
Check Point Allies with NVIDIA to Secure AI Platforms
Check Point Software Technologies Ltd. today revealed it has developed a cybersecurity platform to secure artificial intelligence (AI) factories in collaboration with NVIDIA. Announced at the NVIDIA GTC conference, the AI Cloud Protect platform enables cybersecurity teams to leverage dynamic objects to enforce policies in real time using NVIDIA BlueField-3 data processing units (DPUs) to..…
-
NDSS 2025 CHAOS: Exploiting Station Time Synchronization in 802.11 Networks
Session 1A: WiFi and Bluetooth Security Authors, Creators & Presenters: Sirus Shahini (University of Utah), Robert Ricci (University of Utah) PAPER CHAOS: Exploiting Station Time Synchronization in 802.11 Networks Many locations, especially in urban areas, are quite noisy with WiFi traffic. In addition to data traffic, WiFi stations send management and control frames that can…
-
NDSS 2025 CHAOS: Exploiting Station Time Synchronization in 802.11 Networks
Session 1A: WiFi and Bluetooth Security Authors, Creators & Presenters: Sirus Shahini (University of Utah), Robert Ricci (University of Utah) PAPER CHAOS: Exploiting Station Time Synchronization in 802.11 Networks Many locations, especially in urban areas, are quite noisy with WiFi traffic. In addition to data traffic, WiFi stations send management and control frames that can…
-
Interview mit Orange Cyberdefense Cybersecurity Umbruch statt Aufbruch
Der Cybersecurity-Markt ist eher im Umbruch als im Aufbruch. Netzpalaver sprach mit Dr. Matthias Rosche, Managing Director bei Orange Cyberdefense Germany, auf der Sicherheitsmesse it-sa darüber, warum auf Cybersicherheit spezialisierte Unternehmen kaum noch Profite machen, wie immer mehr kleine Anbieter durch Konsolodierung verschwinden, was das mit Regularien, künstlicher Intelligenz und der Datensouveränität zu tun hat…
-
TechTalk: Die Künstliche Intelligenz schafft neue Sicherheitsrisiken, aber auch neue Tools
Auf der Security-Veranstaltung it-sa (Home of IT-Security) haben wir auf unserem Messestand in Halle 7A zahlreiche Videos aufgezeichnet und produziert. So wie das folgende, in dem der Security-Experte Michael Veit vom Sicherheitsanbieter Sophos über eins der prominenten Themen der it-sa 2025 spricht, nämlich über die künstliche Intelligenz und deren Sicherheitsrisiken. Unser Gespräch handelte aber auch…
-
NDSS 2025 Lend Me Your Beam: Privacy Implications Of Plaintext Beamforming Feedback In WiFi Session 1A: WiFi and Bluetooth Security
Session 1A: WiFi and Bluetooth Security Authors, Creators & Presenters: Rui Xiao (Zhejiang University), Xiankai Chen (Zhejiang University), Yinghui He (Nanyang Technological University), Jun Han (KAIST), Jinsong Han (Zhejiang University) PAPER Lend Me Your Beam: Privacy Implications of Plaintext Beamforming Feedback in WiFi Our thanks to the Network and Distributed System Security (NDSS) Symposium for…
-
NDSS 2025 Oreo: Protecting ASLR Against Micro-Architectural Attacks
Authors, Creators & Presenters: Shixin Song (Massachusetts Institute of Technology), Joseph Zhang (Massachusetts Institute of Technology), Mengjia Yan (Massachusetts Institute of Technology) PAPER Oreo: Protecting ASLR Against Microarchitectural Attacks Address Space Layout Randomization (ASLR) is one of the most prominently deployed mitigations against memory corruption attacks. ASLR randomly shuffles program virtual addresses to prevent attackers…
-
NDSS 2025 Rediscovering Method Confusion in Proposed Security Fixes for Bluetooth
Authors, Creators & Presenters: Maximilian von Tschirschnitz (Technical University of Munich), Ludwig Peuckert (Technical University of Munich), Moritz Buhl (Technical University of Munich), Jens Grossklags (Technical University of Munich) Session 1A, PAPER Rediscovering Method Confusion in Proposed Security Fixes for Bluetooth Previous works have shown that Bluetooth is susceptible to so-called Method Confusion attacks. These…
-
TechTalk: Maßgeschneiderte Agentic AI-Tools werden SOC-Teams künftig bei ihrer Arbeit unterstützen
Während der Sicherheitsveranstaltung it-sa 2025 (Home of IT Security) durften wir dieses Videointerview mit Aris Koios vom Sicherheitsanbieter CrowdStrike führen. Darin spricht er zum einen über die Bedeutung von Agentic AI-Tools und wie sie zu mehr Sicherheit führen können. Zum anderen fokussiert er sich auf die Herausforderungen, die sich aus dem aktuellen Fachkräftemangel ergeben und…
-
NDSS 2025 CHAOS: Exploiting Station Time Synchronization In 802.11 Networks Session 1A: WiFi and Bluetooth Security
Authors, Creators & Presenters: Sirus Shahini (University of Utah), Robert Ricci (University of Utah) PAPER – CHAOS: Exploiting Station Time Synchronization in 802.11 Networks Many locations, especially in urban areas, are quite noisy with WiFi traffic. In addition to data traffic, WiFi stations send management and control frames that can easily exceed several hundred frames…
-
NDSS 2025 Off-Path TCP Hijacking In Wi-Fi Networks: A Packet-Size Side Channel Attack
SESSION Session 1A: WiFi and Bluetooth Security PAPER Off-Path TCP Hijacking in Wi-Fi Networks: A Packet-Size Side Channel Attack In this paper, we unveil a fundamental side channel in Wi-Fi networks, specifically the observable frame size, which can be exploited by attackers to conduct TCP hijacking attacks. Authors, Creators & Presenters: Ziqiang Wang (Southeast University),…
-
NDSS 2025 Symposium on Usable Security and Privacy (USEC) 2025 Afternoon, Paper Session 2
Authors, Creators & Presenters: PAPERS Understanding reCAPTCHAv2 via a Large-Scale Live User Study Andrew Searles (University of California Irvine), Renascence Tarafder Prapty (University of California Irvine), Gene Tsudik (University of California Irvine) Modeling End-User Affective Discomfort With Mobile App Permissions Across Physical Contexts Yuxi Wu (Georgia Institute of Technology and Northeastern University), Jacob Logas (Georgia…
-
NDSS 2025 Symposium on Usable Security and Privacy (USEC) 2025, co-located with the Network and Distributed System Security (NDSS) Symposium 2025 Afternoon, Session 3
Authors, Creators & Presenters: PAPERS Vision: Retiring Scenarios — Enabling Ecologically Valid Measurement in Phishing Detection Research with PhishyMailbox Oliver D. Reithmaier (Leibniz University Hannover), Thorsten Thiel (Atmina Solutions), Anne Vonderheide (Leibniz University Hannover), Markus Dürmuth (Leibniz University Hannover) Vision: Towards True User-Centric Design for Digital Identity Wallets Yorick Last (Paderborn University), Patricia Arias Cabarcos…
-
NDSS 2025 Symposium on Usable Security and Privacy (USEC) 2025, co-located with the Network and Distributed System Security (NDSS) Symposium Keynote
Tags: computer, conference, data, encryption, mobile, network, password, privacy, risk, strategy, technologyAuthor, Creator & Presenter: Dr. Patrick Gage Kelley PhD Dr. Patrick Gage Kelley is the Head of Research Strategy for Trust & Safety at Google. He has worked on projects that help us better understand how people think about their data and safety online. These include projects on the use and design of user-friendly privacy…
-
TechTalk: Die KI bietet neue Angriffsvektoren und schützt gleichzeitig davor
Während der großen Security-Veranstaltung it-sa 2025 durften wir mit Jörg von der Heydt vom Sicherheitsanbieter Bitdefender an unserem Messestand dieses Videointerview führen. Darin spricht er über den scheinbaren Widerspruch, der sich aus dem Einsatz von KI-Techniken und -Anwendungen und einer erforderlichen und gewünschten digitalen Souveränität ergibt. Und klar, dass uns auch interessierte, wie sich mögliche…
-
TechTalk: Die KI bietet neue Angriffsvektoren und schützt gleichzeitig davor
Während der großen Security-Veranstaltung it-sa 2025 durften wir mit Jörg von der Heydt vom Sicherheitsanbieter Bitdefender an unserem Messestand dieses Videointerview führen. Darin spricht er über den scheinbaren Widerspruch, der sich aus dem Einsatz von KI-Techniken und -Anwendungen und einer erforderlichen und gewünschten digitalen Souveränität ergibt. Und klar, dass uns auch interessierte, wie sich mögliche…
-
NDSS 2025 Symposium On Usable Security And Privacy (USEC) 2025, Paper Session 1
Tags: conference, cyber, cybersecurity, defense, international, LLM, network, password, phishing, privacy, technologyAuthors, Creators & Presenters: PAPERS On-demand RFID: Improving Privacy, Security, and User Trust in RFID Activation through Physically-Intuitive Design Youngwook Do (JPMorganChase and Georgia Institute of Technology), Tingyu Cheng (Georgia Institute of Technology and University of Notre Dame), Yuxi Wu (Georgia Institute of Technology and Northeastern University), HyunJoo Oh(Georgia Institute of Technology), Daniel J. Wilson…
-
Insider Research im Gespräch – it-sa 2025: Die Rolle von Sandboxes in einer KI-basierten Cybersicherheit
First seen on security-insider.de Jump to article: www.security-insider.de/podcast-ki-vs-sandbox-cybersicherheit-it-sa-2025-a-6f6f90555a3895fbfc22c63e276d914c/