http://cubist.cs.washington.edu/Security Mon, 26 May 2008 15:06:53 +0000 http://backend.userland.com/rss092 en University of Washington CSE PhD student Dan Halperin et al.'s paper on the security and privacy for pacemakers and implantable defibrillators just received the Best Paper Award at the annual IEEE Symposium on Security and Privacy (a.k.a. the "Oakland" conference). Dan and the rest of the team from UW, UMass Amherst, and Harvard ... http://cubist.cs.washington.edu/Security/2008/05/26/pacemaker-and-implantable-defibrillator-paper-at-oakland/ I'm not sure if many people read this blog, but I recently noticed that the UW project Phalanx (slides, paper, and poster available from Colin Dixon's site, recently featured on Slashdot) brought up the idea of countering botnets by setting up neutral ('white-hat' was tossed around in the /. comments) ... http://cubist.cs.washington.edu/Security/2008/04/22/phalanx-attains-slashdot-fame/ Our research group (Charlie Reis, Yoshi Kohno, and Steve Gribble from UW CSE, and Nick Weaver from ICSI) has just presented a measurement study showing that many users are receiving web pages that have been modified in-flight.  The pages are changed between the web server and the user's browser, either ... http://cubist.cs.washington.edu/Security/2008/04/20/in-flight-web-page-modifications/ Have a great spring break everyone! To readers of this blog: Please expect low activity for a while. The University of Washington is on the quarter system, and our quarter just ended. Everyone in the class is, of course, encouraged to still contribute articles to this blog. And ... http://cubist.cs.washington.edu/Security/2008/03/25/happy-spring-break/ The IMA is a rather public place where students, faculty, and spouses can take fitness classes, lift weights, or use an expansive cardio room. The assests include fitness machines, sports equipement, and simply the space, which when occupied by a unwelcome visitor, makes it unusable to a valid ima-goer. In addition, ... http://cubist.cs.washington.edu/Security/2008/03/20/the-husky-union-building-is-the-center-of-life-on-campus-it-is-home-to-the-associated-students-of-the-university-of-washington-hundreds-of-student-clubs-and-organizations-the-university-bookstore/ The Husky Union Building is the center of life on campus. It is home to the Associated Students of the University of Washington, hundreds of student clubs and organizations, the university bookstore, food vendors, university employee payroll and accounting, information services, games area, campus-wide lost & found, US Bank, ... http://cubist.cs.washington.edu/Security/2008/03/18/security-review-husky-union-building/ Summary:Home automation systems in general attempt to enable home owners to have a "smart" house. Instead of light switches you have integrated panels that control everything from your lights, to your shades, to your entertainment system, climate control, alarm system, motorized locks, etc. Some specific examples of such systems like ... http://cubist.cs.washington.edu/Security/2008/03/17/226/ This blog post on freedom-to-tinker came up in my feed reader today: http://www.freedom-to-tinker.com/?p=1265 The post is an e-mail from a company that makes e-voting machines that is threatening legal action if their voting machine is analyzed and the results published. What does everyone think of this? http://cubist.cs.washington.edu/Security/2008/03/17/ethics/ Overview This is a security review of "Smart Guns," a general class of locking/use prevention mechanisms for firearms that rely on biometrics or other authentication indicators (such as "smart" chips embedded in the gun and in rings or other tokens worn by the intended user) to identify a person who is ... http://cubist.cs.washington.edu/Security/2008/03/16/security-review-smart-guns/ In a recent interview with “Condé Nast Portfolio”, Google CEO Eric Schmidt warns us all that a Microsoft-Yahoo merger might “break the internet” due to the consolidation of web-mail, instant messaging, and other services that would follow as a result. This relates to a still on the table 40+ ... http://cubist.cs.washington.edu/Security/2008/03/16/microsoft-yahoo-and-internet-breakage/