Securit13 Podcast
Первый украинский подкаст об информационной безопасности

Intro / Outro Finest Cockles by Blah Blah Blah

Интервью с Максимом Тульевым о блокировках и будущем украинского интернета

Direct download: 83.mp3
Category:Technology -- posted at: 8:15am CET

Intro / Outro I Do Believe I've Had Enough by Zephaniah And The 18 Wheelers

Big 4 of the top security and privacy conferences: S&P ("Oakland"), NDSS, CCS and USENIX Security.

Наука не делается самостоятельно, a нужно учиться у передовых исследований, как они интегрируются с практикой, понимать их уровень, и себя показывать. По-этому, для того кто первый с украинским affiliation опубликует статью на этих конференциях - с меня можно пообещать "коньяк" :)

The Network and Distributed System Security Symposium (NDSS) 2017 by Internet Society -

> From the keynote speech by J. Alex Halderman:
"Want to Know if the Election was Hacked? Look at the Ballots" -
"Securing Digital Democracy" course -
Video -

> Web Security section:
"(Cross-)Browser Fingerprinting via OS and Hardware Level Features" by Yinzhi Cao et al. -
Websites to test your browser and device fingerprint: (now, cross-browser!)
"Fake Co-visitation Injection Attacks to Recommender Systems" by Guolei Yang et al. -

> User Authentication section:
"Cracking Android Pattern Lock in Five Attempts" by Guixin Ye at el. -
"Towards Implicit Visual Memory-Based Authentication" by  -

> TLS et al. (several papers on Diffie-Hellman and more)
"The Security Impact of HTTPS Interception" by Zakir Durumeric et al. -
"WireGuard: Next Generation Kernel Network Tunnel" by Claude Castelluccia et al. -  (by a single author, Jason Donenfeld!)
More on WireGuard:

> On Tor:
"The Effect of DNS on Tor's Anonymity" by Benjamin Greschbach et al. -
"Avoiding The Man on the Wire: Improving Tor's Security with Trust-Aware Path Selection" by Aaron Johnson et al.  -  (more on proper path selection for Tor, possible attacks on Astoria).

> Malware:
"Dial One for Scam: A Large-Scale Analysis of Technical Support Scams" - наша статья, получившая Distinguished Paper Award!
"MaMaDroid: Detecting Android Malware by Building Markov Chains of Behavioral Models" by Enrico Mariconti et al. -
"A Broad View of the Ecosystem of Socially Engineered Exploit Documents" by Stevens Le Blond et al. - s (можно проводить много интересных исследований на базе данных из VirusTotal).

... and much more interesting works on SGX, virtualization, and binary reassembly, etc.

Plus, a DNS Privacy Workshop program -

Direct download: 82.mp3
Category:Technology -- posted at: 8:13am CET