Carnegie Mellon's hacking competition inspires thousands of kids to pursue a career in cybersecurity
Over 27,000 students participated in this year's picoCTF cybersecurity competition – which ended October 12 – shattering records from previous years. Of the 14,000 US-based student players eligible for prizes, nearly two-thirds of them claimed that they're "more interested in pursuing a career in cybersecurity" as a result of playing picoCTF, according to a post-competition survey.
CyLab's Norman Sadeh speaks on plenary panel about data protection and privacy
Last week, CyLab's Norman Sadeh, a professor in the Institute for Software Research in the School of Computer Science and co-director of the Privacy Engineering program, spoke about privacy, artificial intelligence (AI), and the challenges at the intersection of the two at the International Conference of Data Protection and Privacy Commissioners (ICDPPC).
Dena Haritos Tsamitis secures $5 million NSF award for CyberCorps Scholarship for Service program
At a time when demand for cybersecurity expertise has never been higher, Carnegie Mellon University (CMU) has just been awarded a $5 million renewal of its National Science Foundation (NSF) CyberCorps Scholarship for Service (SFS) program through 2023.
CyLab's massive middle and high school hacking competition, picoCTF, launches its 2018 contest
Guidance counselors today are urging their students to consider becoming doctors, lawyers, engineers, and … computer hackers? That's the goal with picoCTF, Carnegie Mellon University's free, online cybersecurity competition for middle and high school students, which launches today for the fourth time since its inception in 2013.
CyLab study finds users may be over-confident in protections of private browsing
A team of researchers from the CyLab Usable Privacy and Security Lab analyzed 450 consenting users' browsing behaviors over a three-year period. Their study was presented at last month's Symposium on Usable Privacy and Security in Baltimore.
Carnegie Mellon's CyLab launches initiative on IoT security with Amazon Web Services, Infineon Technologies, and Nokia Bell Labs
The IoT@CyLab initiative will bring together faculty and student researchers across the university and leading corporations with a common vision of making IoT more secure and privacy-respecting.
CyLab study: Romantic couples are sharing online accounts in security-compromising ways
A CyLab research team surveyed 195 participants about their relationship status and account-sharing behavior across a multitude of popular websites. The survey revealed users engaging in unsafe security practices.
CMU's Plaid Parliament of Pwning places 2nd at DefCon
Carnegie Mellon's competitive hacking team, the Plaid Parliament of Pwning (PPP), placed 2nd overall at the 26th annual DefCon security conference hacking competition, widely considered the "World Series of Hacking." The competition was held August 9 – 12 in Las Vegas.
Study provides a glimpse into how people think about privacy
In 2014, Lorrie Cranor and her graduate students asked hundreds of people ranging from age 5 to 91 to draw their own illustration of privacy as part of her "Privacy Illustrated" project. CyLab's Maggie Oates has spent the last couple months analyzing what it all means.
Africa's first university-level blockchain course helps spread trusted tech throughout continent
Blockchain technologies have been touted by many as a huge advancement in trust – something that can create trust where it didn't exist before. That's exactly why Carnegie Mellon made sure it would be the first to offer a university-level course on it in Africa.
CMU hosts 11th Workshop on Security and Human Behavior
The eleventh Workshop on Security and Human Behavior kicked off this week on Carnegie Mellon University’s Pittsburgh campus, bringing together computer scientists, security engineers, economists, psychologists, and other scholars around the world interested in understanding the interplay between security and human behavior.
CMU student discovers website leaking locations of cell phone customers
Some cybersleuthing by Robert Xiao, a Ph.D. student in the Human-Computer Interaction Institute, uncovered a security vulnerability on the website of LocationSmart, a Carlsbad, Calif., company that provides a service for identifying the real-time location of mobile phones in the United States and Canada.
Fourteen years later, Pasareanu’s automated software-testing work awarded for retrospective impact
Fourteen years ago, CyLab associate research professor Corina Pasareanu and two of her colleagues published a paper outlining three automated techniques for checking software for bugs and vulnerabilities. This month, Pasareanu and her colleagues are receiving the 2018 Retrospective Impact Award from the International Symposium on Software Testing and Analysis (ISSTA).
CMU-Africa and Facebook co-host cybersecurity hackathon in Rwanda
Last week, Facebook and Carnegie Mellon University Africa hosted a cybersecurity-themed hackathon in Kigali, Rwanda, with the goal of engaging and inspiring students to become more involved in cybersecurity. During the 24-hour hackathon, students were challenged with identifying a security problem in any industry currently affecting Rwanda and/or other African countries and developing a solution.
CyLab’s Lorrie Cranor receives the IAPP 2018 Leadership Award
The International Association of Privacy Professionals (IAPP) has named Lorrie Cranor the recipient of the 2018 Leadership Award. Cranor, a professor in the Institute for Software Research and the Department of Engineering and Public Policy, accepted the award at the IAPP’s Global Privacy Summit on March 27.
CyLab's Nicolas Christin to testify before Congress on cybercrime
CyLab’s Nicolas Christin, an associate research professor in the Institute for Software Research and the Department of Engineering and Public Policy, will be delivering a testimony before Congress today at 2 p.m., March 15, 2018, in the Rayburn House Office Building in Washington, D.C.
INI Director to Appear on March 9 WQED Cyber-Safety Webcast
Dr. Dena Haritos Tsamitis, director of the Information Networking Institute (INI), will appear on a live webcast of WQED's nationally-distributed television program iQ: smartparent on March 9, 2018 at 11:30 a.m. EST. The episode - "Cyber-Safety: Privacy, Protection, and the Latest Laws Affecting Children and Families" - will be available at www.iqsmartparent.org/webcasts beginning at 11:30 a.m. EST on March 9.
Carnegie Mellon researchers create an AI to help us make sense of privacy policies
CyLab’s Lorrie Cranor and her student Blase Ur win top SIGCHI awards
Lorrie Cranor, a professor in the Institute for Software Research and the Department of Engineering and Public Policy, is this year’s recipient of the Social Impact Award from the Association for Computing Machinery Special Interest Group on Computer Human Interaction (SIGCHI). Cranor’s former Societal Computing Ph.D. student Blase Ur won the group’s Outstanding Dissertation Award.
CyLab team develops promising tool to help prevent cross-site scripting (XSS) attacks
Right now, go to Google.com, search for something (anything) and then look at the search results’ URL. It’s a jumbled mess of numbers, letters, and characters, right? That mess of characters is coordinating the creation of the webpage, displaying a customized list of results based on what you searched for.
Former presiding FISA court judge discusses security and privacy at CMU
Last week, former presiding judge at the Foreign Intelligence Surveillance Act (FISA) court Reggie B. Walton spoke to an auditorium full of eager security and privacy researchers. Walton’s talk, titled “The Foreign Intelligence Surveillance Court: Myth Versus Reality,” touched on a number of themes around the court, including privacy and national security.
Does your project or program have a news story to share with us?