Home > News >

I3P Researchers in the News

January 2012

University of Virginia 

Yacov Haimes
"'Chemical cybernetics' and the problem of climate change"
http://www.philstar.com/Article.aspx?articleId=764869&publicationSubCategoryId=75 

Carnegie Mellon University 

Alessandro Acquisti
"Visibility before all"
http://www.economist.com/node/21542748
"Facial recognition technology creates privacy headaches for agencies"
http://fcw.com/articles/2012/01/05/facial-recognition-software-privacy.aspx 

Georgia Institute of Technology

Mustaque Ahamad
"Cyber threats in 2012: 5 pain points"
http://gcn.com/articles/2012/01/16/cybersecurity-predictions-for-2012.aspx
"More web users aim to thwart prying eyes"
http://www.ajc.com/news/more-web-users-aim-1288374.html

Dartmouth College

Sean Smith
"Usenix: Dartmouth Expanding Diff, Grep Unix Tools"
http://www.pcworld.com/businesscenter/article/245758/usenix_dartmouth_expanding_diff_grep_unix_tools.html

 The I3P

"I3P Newsletter Released"
http://www.thei3p.org/docs/news/newsletter12-11.pdf

December 2011

Sandia National Labs

Raymond Parks and David Duggan
“Principles of Cyber-warfare”
http://ieeexplore.ieee.org/xpl/freeabs_all.jsp?arnumber=6029360

Dartmouth College

Eric Johnson
“Tuck MBAs select top tech toys for the holiday season”
http://www.ft.com/cms/s/2/eb3254a6-1526-11e1-855a-00144feabdc0.html#axzz1gd0fSW6v
“Tuck students compile list of season’s top toys”
http://thedartmouth.com/2011/11/28/news/tech

The MITRE Corperation

Bruce Bakis
“So, What Are These Privacy Audits That Google And Facebook Have To Do For The Next 20 Years?”
http://www.forbes.com/sites/kashmirhill/2011/11/30/so-what-are-these-privacy-audits-that-google-and-facebook-have-to-do-for-the-next-20-years/

Carnegie Mellon University

Rahul Telang
“Delaying content leaves money on the table”
http://thehill.com/opinion/op-ed/196051-delaying-content-leaves-money-on-the-table
“Yet Another Study Shows That Hollywood's Own Bad Decisions Are Increasing The Amount Of Infringement”
http://www.techdirt.com/articles/20111201/03191216939/yet-another-study-shows-that-hollywoods-own-bad-decisions-are-increasing-amount-infringement.shtml

Alessandro Acquisti
“Hacking at Hotels: Mutating Threats at the Ramparts”
http://www.4hoteliers.com/4hots_fshw.php?mwi=6471

Columbia University (Former I3P Member Institution)

Salvatore Stolfo
“Printer Vulnerability Puts HP Behind the Eight Ball”
http://www.internetevolution.com/author.asp?section_id=1087&doc_id=236496&f_src=internetevolution_gnews
"Exclusive: Millions of printers open to devastating hack attack, researchers say"
http://redtape.msnbc.msn.com/_news/2011/11/29/9076395-exclusive-millions-of-printers-open-to-devastating-hack-attack-researchers-say
"'Print Me if you Dare,' Columbia University Intrusion Detection Systems Lab             
http://www.youtube.com/watch?v=dXDF0-2c1zc [VIDEO]

November 2011

• SRI International's Ulf Lindqvist is quoted in an article on the vulnerability of industrial controllers. The Idaho National Laboratory is also mentioned.
  http://www.boston.com/business/technology/articles/2011/10/23/science_fiction_style_sabotage_a_fear_in_new_hacks/
• Former I3P postdoctoral research fellow David Dagon's work is referred to in an article regarding the controversial "Stop Online Piracy Act" and he is quoted in an additional article on cyber fraud.
  http://www.wired.com/threatlevel/2011/10/feds-to-blacklist-piracy-sites-under-house-proposal/ 
  http://www.nytimes.com/2011/11/10/technology/us-indicts-7-in-online-ad-fraud-scheme.html 
• Idaho National Laboratory is featured in an NPR story on Stuxnet and cyberwar.
  http://www.npr.org/2011/11/02/141908180/stuxnet-raises-blowback-risk-in-cyberwar
• Carnegie Mellon University researcher Alessandro Acquisti's work is referenced in a variety of articles from facial recognition and riots to online privacy and social security numbers.
  http://spectrum.ieee.org/computing/software/the-future-of-riots
  http://www.tmcnet.com/topics/articles/233005-germany-puts-pressure-facebook-over-facial-recognition-software.htm
  http://www.nytimes.com/2011/11/13/business/face-recognition-moves-from-sci-fi-to-social-media.html
  http://www.huffingtonpost.com/2011/11/11/child-identity-theft-parents-credit-fraud-debt_n_1010093.html
• Sujeet Shenoi of the University of Tulsa continues to have his 'cyber corps' program highlighted. The program trains students for jobs in cyber security.
  http://www.bloomberg.com/news/2011-11-03/cyber-macgyvers-trade-hacking-expertise-for-u-s-scholarships.html
  http://www.delawareonline.com/article/20111109/BUSINESS09/111108071/Cyber-MacGyvers-trade-hacking-expertise-U-S-scholarships
• Purdue's Marc Rogers and Eugene Spafford explain the difficulties in solving cybercrimes and their experience in cyber forensics.
  http://www.cio.com.au/article/407504/why_law_enforcement_can_t_stop_hackers/
• Mustaque Ahamad speaks on the sophistication of cyberattacks as Georgia Tech releases its "Georgia Tech Emerging Cyber Threats Report for 2012."
  http://www.consumeraffairs.com/news04/2011/10/cybersecurity-threats-to-increase-in-2012.html
• Former I3P researcher Salvatore Stolfo of Columbia University describes how the US Government is using 'honeypots' to thwart digital espionage.
  http://www.foxnews.com/scitech/2011/11/07/darpa-sets-traps-for-future-wikileakers/

October 2011

• Sujeet Shenoi of Tulsa University and NSA's Dickie George are cited in an article on security for the U.S. power grid.
  http://www.itbusinessedge.com/cm/blogs/tennant/it-needs-to-come-to-the-rescue-of-us-power-grid/
• Carnegie Mellon's Alessandro Acquisti is quoted in anEconomistarticle on privacy and the proliferation of personal gadgets.
  http://www.economist.com/node/21531113
• UC Berkeley's Deidre Mulligan and Indiana University's Jean Camp each have essays in the new issue of Daedalus, the Journal of the American Arts and Sciences.
  http://www.prnewswire.com/news-releases/protecting-the-internet-daedalus-looks-at-security-accessibility-concerns-amid-an-uncertain-future-131142558.html
• Barry Horowitz from University of Virginia has contributed to a paper on combining system-aware security with the nuclear turbine control system to avert the threat of cyber-attacks. The paper will be featured at the IEEE Homeland Security Conference in Boston.
  http://www.prnewswire.com/news-releases/ensuring-cybersecurity-of-nuclear-power-plants-to-be-featured-at-ieee-homeland-security-conference-in-boston-area-131870743.html  
  http://www.marketwatch.com/story/ensuring-cybersecurity-of-nuclear-power-plants-to-be-featured-at-ieee-homeland-security-conference-in-boston-area-2011-10-14
• Cornell Researchers Robbert Van Renesse and Ken Birman are working to secure cloud computing.
  http://www.ecnmag.com/News/Feeds/2011/10/blogs-the-cutting-edge-researchers-work-to-take-the-errors-out-of-the-clo/
  http://www.physorg.com/news/2011-10-errors-cloud.html
  http://www.eetindia.co.in/articleLogin.do?artId=8800653826&fromWhere=/ART_8800653826_1800005_NT_eacfd234.HTM&catId=1800005&newsType=NT&pageNo=null&encode=eacfd234
  http://www.scientificcomputing.com/news-HPC-Cornell-Team-Aims-to-Take-Errors-Out-of-Cloud-Computing-101911.aspx
• The I3P's Research Director Shari Lawrence Pfleeger has co-written a book titled, "Analyzing Computer Security: A Threat / Vulnerability / Countermeasure Approach"
  http://www.informit.com/store/product.aspx?isbn=0132789469
  http://www.informit.com/articles/article.aspx?p=1749173
• Georgia Tech's Mustaque Ahamad work is highlighted in an article on cell phone security.
  http://www.metro.us/newyork/life/article/999250--college-could-smartphones-put-your-cyber-security-at-risk
• Purdue University's Marc Rogers is interviewed in a New Scientist article on Internet hacker groups.
  http://www.newscientist.com/article/mg21128291.900-summer-of-lulz-the-empire-strikes-b

September 2011

• In an article on using mobile devices as payment options, Kevin Fu of the University of Massachusetts, Amherst says said mobile payment technology could have the potential to reduce credit card theft, but consumers should be wary of companies promising total security.
  http://www.huffingtonpost.com/2011/09/20/mobile-wallet-security-privacy_n_972192.html
• Dartmouth's David Kotz has his work on securing mobile devices in the healthcare sector highlighted in a Dartmouth Now article.
  http://now.dartmouth.edu/2011/09/cybersecurity-health-care-and-mobile-devices/
• Dartmouth's Eric Johnson writes an opinion piece for the Wall Street Journal on safeguarding electronic health records
  http://online.wsj.com/article/SB10001424053111904716604576542380296355702.html
• Rae Zimmerman of New York University is asked to comment on New York's aging infrastructure in the wake of water main failure on the city's Upper West Side.
  http://www.amny.com/urbanite-1.812039/subway-havoc-as-water-main-breaks-on-upper-west-side-1.3183983
• Indiana University's Kelly Caine is quoted in NPR's All Things Considered broadcast on password security.
  http://www.npr.org/2011/07/25/138672758/hunting-for-a-password-that-only-you-will-know

August 2011

• I3P research director Shari Lawrence Pfleeger and University of Massachusetts, Amherst professor Kevin Fu are quoted in an article on regulations for medical devices.
  http://www.latimes.com/news/nationworld/nation/la-na-fda-devices-20110901,0,3460837.story
• Georgia Tech's David Dagon, former I3P postdoctoral fellow,  joins other security researchers in highlighting concerns with the PROTECT IP act, legislation that addresses copyright infringement and the sale of counterfeit goods.
  http://www.nationaljournal.com/tech/internet-bill-could-help-hackers-experts-warn-20110714         
• Dartmouth's Eric Johnson says the focus of cyber security is shifting towards the human element as technological mitigation techniques "have reached maturity."
  http://blogs.wsj.com/digits/2011/07/21/corporate-security-chiefs-focus-on-human-side-of-cybercrime/
  http://www.tuck.dartmouth.edu/digital/media-library/radiotuck/information-security-today-and-predictions-for-the-near-future         
• Carnegie Mellon University researcher Alessandro Acquisti warns that social security numbers can be derived from facial recognition software and social media profiles.
  http://searchsecurity.techtarget.com/news/2240038858/Allesandro-Acquisti-to-stress-computer-facial-recognition-ills-at-Black-Hat
  http://technolog.msnbc.msn.com/_news/2011/08/01/7218343-facial-recognition-software-can-id-your-ssn http://www.pcworld.com/article/237453/security_hacker_conferences_have_technology_industry_buzzing.html
  http://news.cnet.com/8301-31921_3-20088456-281/face-matching-with-facebook-profiles-how-it-was-done/
  http://money.cnn.com/2011/08/05/technology/facebook_facial_recognition/
• Michael Locasto, a former I3P postdoctoral fellow, comments in an article about NATO computers being hacked.
  http://www.edmontonjournal.com/homes/Hack+claim+chilling+NATO+prof+says/5142678/story.html         
• Research performed by UC Berkeley Law professor Deirdre Mulligan, a member of the Team for Research in Ubiquitous Secure Technology (TRUST), is mentioned in an article about TRUST, a National Science Foundation Science and Technology Center.
  http://www.usnews.com/science/articles/2011/08/04/the-science-of-cyber-security

July 2011

• I3P research director Shari Lawrence Pfleeger is quoted in an article on the challenges of public/private collaboration in securing our cyber infrastructure.
  http://moneywatch.bnet.com/economic-news/news/nations-fight-against-cyber-intruders-goes-local/6262164/  
• SRI’s Ulf Lindqvist warns of vulnerabilities in smart grid technology.
  http://www.infosecurity-us.com/view/18605/control-systems-smart-meters-could-be-vulnerable-to-smart-grid-attack/  
• David Nicol of the University of Illinois speaks on the complexities of cyber war and also on the difficulties in identifying the origination of attacks.
  http://www.scientificamerican.com/article.cfm?id=fog-of-cyber-warfare
  http://www.scientificamerican.com/article.cfm?id=tracking-cyber-hackers  
• University of Massachusetts, Amherst’s Anna Nagurney co-authored an op-ed on the subject of nuclear medicine supply chain assurance.
  http://www.masslive.com/opinion/index.ssf/2011/07/viewpoint_passage_of_american.html  
• Greg Shannon, chief scientist of the CERT program at Carnegie Mellon, has had his work highlighted in an article on anticipating cyber security events.
  http://www.technologyreview.com/computing/37967/?a=f  
• Dartmouth’s Tuck School of Business professor Eric Johnson discusses the decline of “big box stores” as Best Buy scales back their stores.
  http://www.chicagotribune.com/business/la-fi-best-buy-bigbox-20110622,0,4357587.story  
• Seymour Goodman, Dan Breznitz, and Michael Murphree of Georgia Tech have had their work highlighted in an IEEE magazine article, “Ubiquitous Data Collection: Rethinking Privacy Debates.”
  http://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=05875944  
• I3P research director Shari Lawrence Pfleeger interviews Indiana University principal research scientist Kelly Caine in the second installment of the I3P podcasts series.
  http://www.thei3p.org/media/podcasts.html  

June 2011

• Dartmouth’s Eric Johnson warns that “nobody is secure” in an article on the recent Sony security breach.
  http://www.reuters.com/article/2011/05/06/us-sony-cloud-idUSTRE7455C020110506
  http://blogs.wsj.com/tech-europe/2011/05/09/sony-hack-casts-cloud-over-cloud-computing/?mod=google_news_blog  
• Ulf Lindqvist of SRI comments on the difficulties of keeping online data secure.
  http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2011/05/07/BUHP1JCGMP.DTL  
• Purdue’s Eugene Spafford suggests that ill-preparedness is a likely contributor in the recent security breach of Sony.
  http://www.informationweek.com/news/security/attacks/229402895
• A new book on Chinese innovations in the economic landscape by Georgia Tech’s Dan Breznitz and Michael Murphee is making waves in the news.
  http://www.economist.com/node/18648264?story_id=18648264&fsrc=rss
  http://www.reuters.com/article/2011/05/05/us-china-innovation-idUSTRE7440R720110505?feedType=RSS&feedName=topNews  
• A paper co-authored by NYU’s Rae Zimmerman urges emergency evacuation plans to take a closer look at the human element.
  http://www.newswise.com/articles/study-shows-post-wtc-evacuation-plans-need-to-account-for-more-human-interruptions  
• University of Massachusetts, Amherst’s Kevin Fu comments on critical infrastructure security in an article on electronic warfare.
  http://bostonherald.com/business/technology/general/view.bg?articleid=1343592&srvc=business&position=4  
• David Dagon of Georgia Tech has co-authored a report identifying problems with “Protect IP,” a Congressional bill that would require DNS filtering by U.S. companies under certain circumstances.
  http://www.informationweek.com/news/security/management/229900051  

May 2011

• Former I3P Postdoctoral Research Fellow Shishir Nagaraja is mentioned in a new book by Susan Landou called Surveillance or Security.
  http://www.fiercegovernmentit.com/story/book-excerpt-surveillance-or-security-susan-landau/2011-04-14  
• Carnegie Mellon University Professor Alessandro Acquisti’s work on predicting Social Security Numbers by using social networking data is mentioned in an article on identity theft and children.
  http://blogs.forbes.com/firewall/2011/04/15/debix-ten-percent-of-children-are-victims-of-identity-theft/  
• Sujeet Shenoi of Tulsa University is mentioned in an article on “immunization” for computers.
  http://www.newscientist.com/blogs/onepercent/2011/04/for-computers-herd-immunity-lo.html  
• Steven Bellovin of Columbia writes an article for CircleID on the iPhone tracking controversy.
  http://www.circleid.com/posts/20110421_closer_look_at_apple_and_location_tracking/  

April 2011

• Columbia’s Steven Bellovin and SRI’s Peter Neumann speak out in favor of an appeal to prevent the government from obtaining IP addresses without a search warrant from twitter users linked to Wikileaks.
  http://www.net-security.org/secworld.php?id=10839  
• Steven Bellovin and his colleagues at Columbia University conducted a study which shows that privacy settings on social networking sites may be misleading.
  http://dailyfreepress.com/2011/04/13/study-students-surprised-by-information-facebook-reveals/  
• I3P senior technical advisor Charles Palmer interviews I3P research director Shari Lawrence Pfleeger in the first of a series of planned I3P podcasts.
  http://www.thei3p.org/media/podcasts.html  
• Dartmouth professor Eric Johnson moderates a panel on the future of social gaming.
  http://thedartmouth.com/2011/04/04/news/gaming  

March 2011

• NYU’s Rae Zimmerman appears in a PBS broadcast on rebuilding Japan’s infrastructure and housing following the earthquake disaster.
  http://www.pbs.org/nbr/site/onair/transcripts/rebuilding_japan_110316/  
• Marc Rogers of Purdue University helps in a criminal investigation.
  http://www.stltoday.com/news/local/crime-and-courts/article_398d34e8-d0d9-55db-a302-530ed21bd27c.html  
• Columbia’s Steve Bellovin offers technical analysis of the recent RSA Security Firm breach.
  http://www.scmagazineus.com/security-experts-dhs-lawmakers-react-to-rsa-hack/article/198832/  
  http://blogs.computerworld.com/18011/is_rsa_listening  
• Alessandro Acquisti of Carnegie Mellon University speaks about human behavior and it’s relation to privacy in online social networks.
  http://www.msnbc.msn.com/id/41995992/ns/technology_and_science-security/  
  http://www.msnbc.msn.com/id/41995926/ns/technology_and_science-security/
• Cornell University’s Robert Van Renesse comments on why Internet Providers have not switched to the IPv6 protocol.
  http://www.newswise.com/articles/service-providers-slow-to-adopt-solutions-as-internet-exhausts-ip-addresses 
• Anup Ghosh from George Mason University:
  • discusses recent attacks on western energy companies and how phishing could be responsible for the theft of carbon credits. http://marketplace.publicradio.org/display/web/2011/02/24/tech-report-hackers-heist-carbon-credits/
  • describes the techniques used by Chinese hackers to attack western power companies
    http://www.infopackets.com/news/security/2011/20110215_mcafee_hackers_targeting_major_oil_companies.htm
  • explains a new trojan that targets the financial sector saying, “banks have no way of knowing whether the transaction coming from the customer is legitimate or whether the customer's browser is infected.
    http://www.pcworld.com/businesscenter/article/220437/oddjob_does_a_good_job_of_taking_your_money.html
  • comments on “malvertising,” a method of infecting computers via compromised advertisements featured on legitimate websites
    http://www.eweek.com/c/a/Security/London-Stock-Exchange-Site-Served-Up-Malicious-Ads-Fake-AV-857823/  
• Dartmouth Tuck School professor Eric Johnson discusses employee access to sensitive corporate data and how even well-intentioned employees allow data to be leaked onto the web.
  http://www.economist.com/node/18226961  

Febuary 2011

• I3P Research Director Shari Lawrence Pfleeger testifies before the House Armed Services Subcommittee on Emerging Threats and Capabilities regarding the difficulties in determining when and how the government should become involved in a major cyber event. A video of the hearing can be viewed here: http://www.youtube.com/watch?v=iuGAmjqvdzI
  http://www.cnn.com/2011/POLITICS/02/11/cybersecurity.hearing/
  http://www.defensenews.com/story.php?i=5687520&c=POL&s=TOP
  http://www.federalnewsradio.com/?sid=2270612&nid=35
  http://armedservices.house.gov/index.cfm/hearings?ContentRecord_id=90d8a16a-23b7-4b9c-a732-cb10ab20e579&ContentType_id=14f995b9-dfa5-407a-9d35-56cc7152a7ed&Group_id=13e47ffa-0753-47a7-ad5e-1ba7592015c9
• The I3P’s work on insider threats is highlighted by Shari Lawrence Pfleeger in an article on rogue insiders.
  http://inform.com/government-and-politics/internal-review-insider-threat-risk-4737197a
• University of Illinois professor David M. Nicol succeeds Bill Sanders as the director of the Information Trust Institute.
  http://www.news-gazette.com/news/technology/2011-02-07/ui-professor-named-director-program.html
  http://www.iti.illinois.edu/news/press-releases/nicol-named-new-director-information-trust-institute
• Indiana University's Jean Camp comments on the difficulties of identifying true ownership over websites.
  http://news.cincinnati.com/article/20110204/BIZ/102050327/1076/BIZ/Suit-asks-who-owns-a-website- 
• Anup Ghosh discusses the use of search engines by hackers to spread malware over the web.
  http://www.bloomberg.com/news/2011-02-15/google-chases-computer-criminals-to-search-engine-competitors.html  
• The upcoming I3P-organized conference at NIST, Software and Usable Security Aligned for Good Engineering (SAUSAGE) is garnering attention in the security world.
  http://threatpost.com/en_us/blogs/sausage-con-delves-it-securitys-human-problem-020411  
• Dartmouth’s Eric Johnson comments on speculation that WikiLeaks exploits P2P networks in order to acquire sensitive data.
  http://www.bloomberg.com/news/2011-01-20/wikileaks-may-have-exploited-music-photo-networks-to-get-classified-data.html
  http://www.pcworld.com/article/217331/wikileaks_said_to_draw_more_from_p2p_than_leaks.html
• At the Black Hat DC conference, George Mason University’s Angelos Stavrou and Zhaohui Wang demonstrated how an attacker can take control of a computer by using a smartphone to exploit a USB vulnerability.
  http://news.cnet.com/8301-27080_3-20028919-245.html
  http://www.techeye.net/security/android-nexus-one-can-fool-pcs-with-malware-keyboard
  http://www.pcworld.com/article/217332/hacker_conferences_quirky_moments.html
  http://story.malaysiasun.com/index.php/ct/9/cid/d805653303cbbba8/id/42332776/ht/Android-Nexus-One-can-fool-PCs-with-malware-keyboard/
  http://www.mb.com.ph/articles/300286/usb-cables-from-friend-foe
• UMass Amherst’s Kevin Fu describes a method for operating flash memory at ultra-low voltages in order to conserve energy in devices such as RFIDs.
  http://spectrum.ieee.org/semiconductors/memory/flash-memory-for-dull-devices
• Denise Anthony of Dartmouth’s Institute for Security, Technology, and Society, recognizes issues of diversity related to technology.
  http://thedartmouth.com/2011/01/26/news/online
• Carnegie Mellon’s Alessandro Acquisti explores the true cost of losing privacy while moderating a panel discussion for the 4th International Data Privacy Day.
  http://www.pittsburghlive.com/x/pittsburghtrib/news/pittsburgh/s_720043.html
  http://www.post-gazette.com/pg/11027/1120897-28.stm
• Anna Nagurney and Min Yu of UMass Amherst released their study on the efficient design of supply chains for products needed in disasters.
  http://www.newswise.com/articles/team-designs-optimal-supply-chains-for-disaster-relief

January 2011

• Dartmouth’s M. Eric Johnson says overly complicated healthcare software is a likely contributor to patient data leaks.
  http://blogs.wsj.com/digits/2011/01/03/why-are-health-data-leaking-online-bad-software-study-says/
  http://healthcare.tmcnet.com/topics/healthcare/articles/131861-hard-to-use-software-causing-data-leaks-from.htm
  http://www.ihealthbeat.org/articles/2011/1/4/complicated-software-a-likely-reason-for-data-leaks-study-suggests.aspx
• Anup Ghosh describes new vulnerabilities found in both Microsoft Windows and Adobe Flash.
  http://www.pcworld.com/businesscenter/article/215481/microsoft_warns_of_new_windows_vulnerability.html
  http://www.redorbit.com/news/technology/1973787/new_windows_zeroday_bug_warning_issued_by_microsoft/
  http://www.eweek.com/c/a/Security/Adobe-Flash-Sandbox-Bypassed-by-Security-Researcher-576573/
  http://www.pcworld.com/businesscenter/article/216379/adobe_sandbox_protection_hacked.html
• Idaho National Laboratory’s work on identifying and circumventing the now notorious Stuxnet worm is featured in a New York Times article.
  http://www.nytimes.com/2011/01/16/world/middleeast/16stuxnet.html

November 2010

• Findings from a Harris Interactive survey support CMU’s Alessandro Acquisti’s work on social network privacy concerns.
  http://www.zdnet.com/blog/btl/social-networks-a-great-place-to-mine-your-alleged-security-questions/41410  
• Anup Ghosh of George Mason University says, “The biggest myth of safe web browsing is the myth of training." In a separate article, he explains the security holes in Adobe’s PDF format.
  http://www.cioupdate.com/features/article.php/3908951/Top-10-Myths-of-Safe-Web-Browsing.htm
  http://www.technewsdaily.com/pdfs-have-become-pretty-darned-fallible-security-experts-warn--1510/
• Columbia University’s Steven Bellovin speaks on the short comings of cryptography regulation.
  http://www.eff.org/deeplinks/2010/10/eight-epic-failures-regulating-cryptography  
• Deirdre Mulligan of UC Berkeley says facebook needs to “think holistically not just about its privacy policies, but also about baking privacy into their technical design,” in an article about subliminal advertising.
  http://technology.gather.com/viewArticle.action?articleId=281474978616790

October 2010

• Columbia University’s Steve Bellovin and SRI’s Peter Neumann speak out against the FBI’s request that encrypted communications systems have backdoors for surveillance. “It's a disaster waiting to happen,” says Bellovin.
  http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2010/09/26/MNIV1FK4J1.DTL
  http://www.wired.com/threatlevel/2010/09/fbi-backdoors/
• Georgia Tech’s Mustaque Ahamad explains why botnets are hard to spot using home anti-virus software, as Comcast releases a new network-level tool to thwart them.
  http://gadgetwise.blogs.nytimes.com/2010/09/30/comcast-to-monitor-customer-computers-for-malware/  
• Ahamad says that new tools to increase the security of voice systems, such as PinDr0p--which can “fingerprint” voice calls and thus deter voice phishing--are much needed.
  http://www.theregister.co.uk/2010/10/06/voice_fingerprints/
• Former I3P Fellow David Dagon warns of increased cyber-attacks against utilities in the Emerging Cyber Threats Report for 2011.
  http://www.pcpro.co.uk/news/security/361762/cyber-attacks-on-utilities-tipped-to-soar
• David Dagon’s discovery of the conficker worm in x-ray and MRI virtualization systems is mentioned in an article on “geek terror.”
  http://www.onenewspage.com/news/Technology/20100928/15486874/Cybercriminals-Launch-New-Era-of-Geek-Terror.htm
• Dartmouth’s Eric Johnson describes some of the many challenges facing HP’s new CEO.
  http://blogs.wsj.com/digits/2010/09/30/is-leo-apotheker-a-good-fit-as-h-ps-new-ceo/  

September 2010

• Research published in Europhysics Letters by Anna Nagurney of U Mass, Amherst, shows that the Braess paradox, which describes patterns in transportation networks, applies only to a specific range of traffic demand.
  http://homelandsecuritynewswire.com/braess-paradox-disappears-under-high-traffic-demands  
• MIT’s Robert Cunningham serves as technical co-chair of this year's IEEE International Conference on Technologies for Homeland Security, an event he says, "...has a little something for everyone."
  http://pr-usa.net/index.php?option=com_content&task=view&id=483665&Itemid=29  
• Alessandro Acquisti of Carnegie Mellon says new social networks, such as the privacy-oriented Diaspora, face growth challenges linked to exclusivity and privacy. "Any network that's tried to compete with Facebook...has entered an arms race to see how much users can be nudged toward revealing," he says.
  http://www.post-gazette.com/pg/10259/1087876-28.stm  
• In a separate story, Alessandro Acquisti reflects on the shifting values of privacy, noting that formerly questionable online behavior is now increasingly the norm. http://marketplace.publicradio.org/display/web/2010/09/17/pm-privacy-policies-may-not-protect-your-privacy/?refid=0

August 2010

• The intense bidding war between HP and Dell for an obscure cloud computing company called 3PAR is a win-win for HP, says Dartmouth’s Eric Johnson.
  http://money.cnn.com/2010/08/27/technology/hp_dell_3par/
• With a $7.5M grant from the National Science Foundation, Ken Birman & Robbert Van Renesse of Cornell, along with researchers from nine other institutions including UC Berkeley and the University of Illinois, are working on a project called Nebula to make the Internet faster, more mobile and more secure.
  http://www.cornellsun.com/section/news/content/2010/09/01/cornell-researchers-work-towards-safer-internet
  http://www.theithacajournal.com/article/20100903/NEWS01/9030369/CU+to+share++7.5M+grant+to+upgrade+the+Internet  
• Former I3P fellow Robin Sommer, now with UC Berkeley-affiliated International Computer Science Institute and one of the lead designers of a 10 gigabit network intrusion detection system, applauds the award of a DoE Small Business Innovation Research grant to cPacket Networks for their work on large network security.
  http://eon.businesswire.com/news/eon/20100902005275/en  
• Former I3P Fellow Guanling Chen presented his work on social networking behavior at the “International Workshop on Opportunistic Radio Frequency (RF) Localization for Next Generation Wireless Devices.”
  http://www.wirelessdevnet.com/news/2010/aug/19/news5.html  

July 2010

• Dartmouth’s Eric Johnson explains the security challenges posed by digital medical records.
  http://www.medicalnewstoday.com/articles/195109.php
  http://www.physorg.com/news198496178.html  
• Alessandro Acquisti of CMU speaks on the current state of privacy in online personal data.
  http://www.nytimes.com/2010/07/18/business/18unboxed.html?_r=2&src=busln
  http://bits.blogs.nytimes.com/2010/07/19/the-economics-of-privacy-pricing/  
• Lawrence Berkeley National Laboratory’s Robin Sommer warns of the rising use of “Geo-tags” imbedded in photo files.
  http://sify.com/news/geo-tags-in-celeb-pics-a-boon-for-stalkers-news-international-khnmuhjdgia.html
  http://www.newscientist.com/article/dn19160-geotags-reveal-celeb-secrets.html
• Steven Bellovin describes how Russian spies hid secret codes in digital images.
  http://www.msnbc.msn.com/id/38028696/ns/technology_and_science-science/
  http://www.bangordailynews.com/detail/148293.html
• Colleges need to upgrade the security of their websites, says Georgia Tech’s Mustaque Ahamad after a slew of college websites were found at risk of exposing student data via a hole in Adobe’s Flash plugin.
  http://chronicle.com/blogPost/Flash-on-College-Web-Sites/25384/  
• Sal Stolfo of Columbia University discusses digital information infrastructure security after the ‘Internet Kill Switch’ controversy.
  http://www.politifact.com/truth-o-meter/statements/2010/jul/06/andrew-napolitano/glenn-beck-host-says-obama-may-soon-be-able-shut-d/ 
• “Security and privacy technology needs to improve in medical devices.” UMass’ Kevin Fu tells the Boston Globe.
  http://www.boston.com/business/healthcare/articles/2010/07/05/security_of_medical_devices_is_a_concern/
  http://mobihealthnews.com/8252/concern-security-of-wireless-implanted-devices/  
• Sujeet Shenoi of the University of Tulsa describes how modern spies use consumer level technologies to steal information.
  http://www.eworldpost.com/spy-suspects-allegedly-used-regular-consumer-tech-2584.html
  http://tothecenter.com/news.php?readmore=12994
  http://www.google.com/hostednews/ap/article/ALeqM5j5aMoWPPmKoHHJmThB8evvWPQP3wD9GMRP6O0 

June 2010

• Alessandro Acquisti discusses privacy protection with the Global Times.
  http://news.xinhuanet.com/english2010/culture/2010-06/28/c_13372763.htm
• In the rush to roll out smart meters, the California Public Utilities Commission overlooks security concerns, says Aaron Burstein of UC Berkeley.
  http://news.cnet.com/8301-27080_3-20007672-245.html
• Dartmouth's Eric Johnson describes in a Wall Street Journal ways in which online data is inappropriately exposed.
  http://online.wsj.com/article/SB10001424052748704122904575314703487356896.html
• Dartmouth’s Eric Johnson explains why corporate stocks have trouble rebounding after major disasters.
  http://www.usatoday.com/money/markets/2010-06-04-disasterstocks04_ST_N.htm
• Anup Ghosh’s company, Invincea, has designed a browser that runs in a virtual environment, shielding the OS from malicious code executions.
  http://www.washingtonpost.com/wp-dyn/content/article/2010/06/04/AR2010060404520.html
  http://www.zdnet.com/blog/perlow/invincea-brings-you-the-windows-browser-deflector-shield-for-real/13164
• Charles Palmer is interviewed by Tom Field, Editorial Director of the Information Security Media Group, on the present state of cyber security.
  http://www.bankinfosecurity.com/articles.php?art_id=2628&opg=1
• Can humans carry and transmit computer viruses? Kevin Fu speaks out after a researcher implants himself with a virus-infected RFID chip.
  http://www.smartplanet.com/technology/blog/science-scope/is-infecting-a-human-with-a-pc-virus-a-big-deal/2025/
• Anup Ghosh will lead a session on virtualization and malicious code at this year's IDGA IT Infrastructure for Defense and Government Conference on June 7-9.
  http://www.itfordefense.com/Event.aspx?id=273644

May 2010

• Dartmouth Professors Denise Anthony and David Kotz are part of a multi-year, multi-institutional investigation into the security of heathcare information technology, a $15 million effort led by Carl Gunter of the University of Illinois. Other I3P member institutions involved in the project include Carnegie Mellon, Johns Hopkins, UC Berkeley, NYU and UMass, Amherst.
  http://thedartmouth.com/2010/05/12/news/funding
• Despite new rules to protect healthcare information, thousands of sensitive documents are still being leaked via P2P filesharing, says Eric Johnson of Dartmouth's Tuck School of Business.
  http://www.computerworld.com/s/article/9176883/P2P_networks_a_treasure_trove_of_leaked_health_care_data_study_finds

April 2010

• Should the U.S. engage in cyber warfare? Robert Hutchinson of Sandia National Laboratories explored this question at a recent University of New Mexico colloquium titled, "Understanding Cyber Attack as an Instrument of Public Policy."
  http://www.unm.edu/~market/cgi-bin/archives/005050.html
• Kevin Fu of UMass, Amherst, speaks to CNN about the perils of pacemakers and other wireless devices.
  http://www.cnn.com/2010/TECH/04/16/medical.device.security/
• Web users need to pay more attention to Internet issues and hold ISPs accountable for their poor online services, says SRI scientist Peter Neumann in an interview.
  http://www.internetevolution.com/author.asp?section_id=851&doc_id=190623&f_src=internetevolution_gnews
• The GhostNet botnet--discovered last year by a research team that includes Shishir Nagaraja of the University of Illinois--is now blamed for stealing missile data from India.
  http://news.in.msn.com/internalsecurity/news/article.aspx?cp-documentid=3771253
• Telecommunications Industry Association (TIA) Standards Committee seeks input from Georgia Tech researchers, including Mustaque Ahamad.
  http://www.businesswire.com/portal/site/home/permalink/?ndmViewId=news_view&newsId=20100330006514&newsLang=en  
• Kevin Fu talks about talks at Dartmouth about security vulnerabilities in wireless implantable medical devices.
  http://thedartmouth.com/2010/04/08/news/devices

March 2010

• Carnegie Mellon's Alessandro Acquisti accurately predicts the social security numbers of 5 million Americans with the aid publicly available data, further underscoring concerns about online privacy.
  http://www.nytimes.com/2010/03/17/technology/17privacy.html
  http://www.msnbc.msn.com/id/15221095/ns/technology_and_science-privacy_lost/
• Georgia Tech’s Mustaque Ahamad helps track down three cybercriminals responsible for the Mariposa botnet.
  http://www.cnn.com/2010/TECH/03/05/cyberattack.prosecute/index.html
• A project by Rahul Telang of Carnegie Mellon triumphs in a bid to receive funding from Google and WPP Marketing Research Awards Program.
  http://www.marketwatch.com/story/google-and-wpp-marketing-research-award-program-advances-into-second-round-of-grants-2010-03-16
• Sujeet Shenoi of Tulsa University draws parallels between vaccinations and up-to-date security software.
  http://www.newscientist.com/article/dn18635-innovation-sending-botnets-the-way-of-smallpox.html

Feburary 2010

• FTC Warns Businesses that P2P File Sharing is Serious Security Risk: Action based on research by Eric Johnson of Dartmouth's Tuck School of Business
  http://www.ftc.gov/opa/2010/02/p2palert.shtm
• Charles Palmer named director of IBM's Institute for Advanced Security
  http://www-304.ibm.com/industries/publicsector/us/en/rep/!!/xmlid=192485

January 2010

• Seymour Goodman calls the dearth of PhD programs in cyber security a major capacity building bottleneck
  http://www.govinfosecurity.com/articles.php?art_id=2088
• Salvatore Stolfo and Steven Bellovin comment on a security breach at Columbia University
  http://www.columbiaspectator.com/2010/02/02/theft-spurs-concern-over-security-information
• Kevin Fu shares his hobby while talking about his work in RFID security
  http://cacm.acm.org/careers/67957-cybersecurity-expert-stays-creative-baking-bread/fulltext

November 2009

• "It's impossible to build a grid that is entirely secure -- some attacks will be successful." William Sanders comments on Obama’s plan to build a smart grid.
  http://www.foxnews.com/politics/2009/10/27/obama-announces-smart-grid-initiative-security-analysts-look-ways-safeguard/
• Mustaque Ahamad of Georgia Tech offers social networking safety tips. “I think younger people are more eager to share more information about themselves and their friends than previous generations.”
  http://nique.net/focus/100260
• I3P and Dartmouth’s ISTS team up for a panel discussion on cyber ethics in the social networking age.
  http://thedartmouth.com/2009/10/23/news/panel
• Columbia University professor Steven Bellovin discusses wire tapping as a way to monitor insider trading.
  http://www.forexpros.com/news/general-news/analysis-insider-trading-wire-taps-sign-of-things-to-come-95856
• Aaron Burstein of UC Berkeley co-signs a letter to the U.S. Election Assistance Commission calling attention to errors in recent certification testing for a new e-voting system made by Diebold/Premier.
  http://www.bradblog.com/?p=7470
• Dartmouth ISTS sociology chair Denise Anthony speaks on health insurance.
  http://thedartmouth.com/2009/10/15/news/insurance/

October 2009

• Rae Zimmerman of NYU and four colleagues at NYU and the Polytechnic Institute of NYU receive a $2 million National Science Foundation grant to fund a multi-disciplinary program to increase cyber security education.
  http://nyunews.com/news/2009/sep/23/security/
• Sujeet Shenoi of the University of Tulsa comments that cell phone hacking may soon be linked to financial gain.
  http://www.newsok.com/is-your-phone-a-secret-spy/article/3408387?custom_click=masthead_topten

September 2009

• Kevin Fu continues to make news after being named “Innovator of the Year” in Technology Review’s “Top 35 under 35” list.
  http://www.technologyreview.com/tr35/
  http://www.technologyreview.com/TR35/Profile.aspx?TRID=760
  http://watchingthewatchers.org/indepth/277226/hacking-pacemakers
  http://web.mit.edu/newsoffice/2009/tr35-0818.html
  http://www.pr-inside.com/technology-review-reveals-the-2009-tr-r1442494.htm

August 2009

• Denise Anthony and Sean Smith of Dartmouth College receive $3 million grant to develop secure computing systems for healthcare.
  http://www.medicalnewstoday.com/articles/160025.php
• UMass Amherst professor Kevin Fu’s work on RFID security is featured in a New Scientist Article.
  http://www.newscientist.com/article/dn17616-rfid-tags-get-an-intelligence-upgrade.html

July 2009

• Georgia Tech professor Seymour Goodman testifies for a congressional subcommittee on cyber security R&D:
  http://www.govinfosecurity.com/articles.php?art_id=1541
  http://www.govinfosecurity.com/articles.php?art_id=1539
  http://www.secuobs.com/revue/news/108308.shtml
• University of Illinois professor Bill Sanders receives HP’s Annual Innovation Research Award:
  http://finance.yahoo.com/news/HP-Announces-Recipients-of-bw-15522893.html
• Sean Smith and Denise Anthony of Dartmouth College are featured in an article on internet standards:
  http://www.sciencecentric.com/news/article.php?q=09070922-dartmouth-college-researchers-help-set-security-standards-the-internet
• Steve Bellowin of Columbia University appears in an article on smart-grid technology:
  http://www.itnews.com.au/News/148987,utilities-wise-up-to-smart-grids.aspx
• The I3P’s Charles Palmer is paraphrased in a radio broadcast of VOA News:
  http://www.voanews.com/specialenglish/2009-07-03-voa1.cfm