Reading List
Note for VN-S3C members: Please use VN-S3C logo in your presentation (right click -> save):
papers from mid June 2011
| Date | Paper | Conference | Slide | Discussion Leader | Note / Comment |
|---|---|---|---|---|---|
| 18/06/2011 | Using Fingerprint Authentication to Reduce System Security: An Empirical Study. http://www.ieee-security.org/TC/SP2011/PAPERS/2011/paper003.pdf | IEEE Oakland 2011 | M.A | The basic idea of the paper is simple and therefore it should be easy to read: using fingerprint make people feel over confident and therefore use weaker passwords. The reason I pick this paper: we invent a lot of secure technologies, but at some point we have may to do user study to learn how they really work in practice. I think we can learn from the way the authors execute their user study. | |
| 02/07/2011 | Bitcoin: A Peer-to-Peer Electronic Cash System | Trungtv | The paper presents Bitcoin, a P2P currency system that no one can track where money flows. It's something like Bittorent, Tor network but for currency. The system is well designed but the paper is somehow too short to describe the whole things. I'm a bit worry since such a P2P currency system is not green at all. To do "Proof of work", all of miners consume CPU, storage, network in a non-stop fashion but only one miner successfully creating 1 block every 10 minutes. The rest is thus working for nothing. | ||
| 09/07/2011 | BotMagnifier: Locating Spambots on the Internet. Link | Usenix Security 2011 | Slide | HaiND | A novel approach for identifying and tracking spamming bots. Meeting note |
| 23/07/2011 | PiOS: Detecting Privacy Leaks in iOS Applications. Link | HaiND | This NDSS distinguished paper offers a solution to protect user from malicious applications written for Apple's iOS | ||
| 13/08/2011 | Dark Clouds on the Horizon: Using Cloud Storage as Attack Vector and Online Slack Space | Usenix Security 2011 | Slide | M.A | A practical paper on DropBox and online storage security. |
| 20/08/2011 | Ntr Trung | ||||
| 03/09/2011 | SMS of Death: from analyzing to attacking mobile phones on a large scale. Link | Usenix Security 2011 | Quang | A framework to analyze the security of SMS clients of feature phones. | |
| 18/09/2011 | Security and Privacy Vulnerabilities of In-Car Wireless Networks: A Tire Pressure Monitoring System Case Study. Link | Usenix Security 2010 | Trung TrV | ||
| 24/09/2011 | Comprehensive Experimental Analyses of Automotive Attack Surfaces. Link | Usenix Security 2011 | Slide | M.A | Continue on car security topic |
| 01/10/2011 | Keypad: an auditing file system for theft-prone devices. Link | EuroSys 2011 | Hai Nguyen |