Privacy, applied

group_project

SaTC: CORE: Small: Models and Measurements for Website Fingerprinting

Submitted by Nicholas Hopper on Wed, 03/13/2019 - 11:10am

Many private interactions between individuals and their friends, families, employers, and institutions are now carried out on the Internet; disclosure of the contents of these interactions or even the mere associations between these parties can expose people to real financial or physical risks. As a result, encryption and services such as virtual private networks or the Tor project that conceal the connection between a user and the websites they visit are growing in popularity.

group_project

SaTC: CORE: Small: Consistent and Private Group Communication

Submitted by Nicholas Hopper on Fri, 03/08/2019 - 10:44am

Texting and social media-based messaging applications have become nearly as common as face-to-face communications for conversation between individuals and groups. While it is known how to provide privacy for conversations between two individuals, there is a gap in extending these techniques to group conversations. This project is developing new communication techniques and open-source software for private communication among groups of users.

group_project

EAGER: Digital Inequalities in the Heartland: Exploring the Information Security Experiences of Marginalized Internet Users

Submitted by WGStaples on Tue, 02/06/2018 - 3:40pm

This project aims to understand how Internet technology may affect patrons' privacy and data security when they use public access computers, and to develop technical solutions that will enable these individuals to go online more safely and securely. The project concentrates especially on people who are economically poor and vulnerable to risk, such as very young or old people, people of color, immigrants, Native people, non-English speakers, and the disabled. Often these patrons must rely on public libraries for their broadband Internet access.

group_project

CAREER: Finding Levers for Privacy and Security by Design in Mobile Development

Submitted by kshilton on Wed, 01/03/2018 - 4:58pm

Mobile data are one of the fastest emerging forms of personal data. Ensuring the privacy and security of these data are critical challenges for the mobile device ecosystem. Mobile applications are easy to build and distribute, and can collect a large variety of sensitive personal data. Current approaches to protecting this data rely on security and privacy by design: encouraging developers to proactively implement security and privacy features to protect sensitive data.

group_project

EAGER: Collaborative: Design, Perception, and Action - Engineering Information Give-Away

Submitted by Erin Krupka on Wed, 01/03/2018 - 4:54pm

The design of social media interfaces greatly shapes how much, and when, people decide to reveal private information. For example, a designer can highlight a new system feature (e.g., your travel history displayed on a map) and show which friends are using this new addition. By making it seem as if sharing is the norm -- after all, your friends are doing it -- the designer signals to the end-user that he can and should participate and share information.

group_project

EAGER: TWC: Collaborative: iPrivacy: Automatic Recommendation of Personalized Privacy Settings for Image Sharing

Submitted by Dan Lin on Wed, 01/03/2018 - 4:35pm

The objective of this project is to investigate a comprehensive image privacy recommendation system, called iPrivacy (image Privacy), which can efficiently and automatically generate proper privacy settings for newly shared photos that also considers consensus of multiple parties appearing in the same photo. Photo sharing has become very popular with the growing ubiquity of smartphones and other mobile devices.

group_project

TWC: Small: Practical Assured Big Data Analysis in the Cloud

Submitted by aniketpkate on Wed, 01/03/2018 - 4:27pm

The use of "cloud technologies" presents a promising avenue for the requirements of big data analysis. Security concerns however represent a major impediment to the further adoption of clouds: through the sharing of cloud resources, an attack succeeding on one node can tamper with many applications sharing that node.

group_project

TWC: Small: Collaborative: RUI: Towards Energy-Efficient Privacy-Preserving Active Authentication of Smartphone Users

Submitted by Paolo Gasti on Wed, 01/03/2018 - 4:21pm

Common smartphone authentication mechanisms such as PINs, graphical passwords, and fingerprint scans offer limited security. They are relatively easy to guess or spoof, and are ineffective when the smartphone is captured after the user has logged in. Multi-modal active authentication addresses these challenges by frequently and unobtrusively authenticating the user via behavioral biometric signals, such as touchscreen interaction, hand movements, gait, voice, and phone location.

group_project

Forum on Cyber Resilience

Submitted by Jeisenberg on Wed, 01/03/2018 - 4:17pm

This project provides support for a National Academies Roundtable, the Forum on Cyber Resilience. The Forum will facilitate and enhance the exchange of ideas among scientists, practitioners, and policy makers concerned with the resilience of computing and communications systems, including the Internet, critical infrastructure, and other societally important systems.

group_project

TWC: Small: Developing Advanced Digital Forensic Tools Based on Network Stack Side Channels

Submitted by Jedidiah Crandall on Wed, 01/03/2018 - 4:14pm

This project is developing the next generation of network measurement tools for penetration testers, digital forensics experts, and other cybersecurity professionals who sometimes need to know more about the Internet or a specific network. It is developing techniques based on TCP/IP side channel inferences, where it is possible to infer something about a remote machine's view of the network based on the use of shared, limited resources.

Outcomes Report URL:

https://www.research.gov/research-portal/appmanager/base/desktop?_nfpb=true&_win...