Cybersecurity

Marina’s research in security closely investigates the boundary between software and hardware.

University of Michigan’s MORPHEUS technology emerges unscathed from bug bounty effort.

Today, over 225 million websites are protected by free certificates issued by Let’s Encrypt.

A new secure code is needed to protect private information from the power of quantum computing.

The upcoming presidential election in the middle of a pandemic has jurisdictions exploring new technologies. They’re not secure.

Zhang is working to improve data security and address important ethical issues related to AI and discriminatory data sets.

Karl (BSE MSE PhD EE) talks about how his time at Michigan helped prepare him for his dream job at Intel and a career advancing embedded memory technology and circuits.

ECE alum Kurt Rohloff helped create one of the world’s best homomorphic encryption software libraries, and he reflects on how his time at Michigan helped shape his career.

Prof. Austin is a creative, outside-the-box thinker who has produced a body of work that has had extraordinary impact in the area of computer architecture.

The team says their framework can scalably and semi-automatically monitor the use of filtering technologies for censorship at global scale.

The proposal provides a chip-level safeguard against sensitive data being transmitted after it’s accessed.

A Q&A with J. Alex Halderman, who co-founded the nonprofit organization.

The nation is using inexpensive commodity equipment to block 170K domains on more than 1K privately-owned ISPs.

The newly discovered microphone vulnerability allows attackers to remotely inject inaudible and invisible commands into voice assistants using light.

The researchers demonstrated that an adversary could remotely manipulate the temperature sensor measurements without tampering with the targeted system or triggering automatic temperature alarms.

Up to this point, no attacks had been discovered targeting a car’s LiDAR system—but a major new finding from researchers at the University of Michigan has demonstrated what that might look like.

The research suggests that common blacklist-based prevention systems are ineffective.

MORPHEUS can encrypt and reshuffle code thousands of times faster than human and electronic hackers.

The meeting began the commission’s review and assessment of election security in Michigan.

The effort seeks to protect the integrity of every vote.

In congressional testimony, professor urges $370M in federal funding to replace outdated machines.

A team of researchers unearthed new data on geographic denial of access to web content in a new paper.

A new special topics course on election cybersecurity gives students an examination of the past, present, and future of US elections.

“The work is an important step towards understanding how to make tradeoffs between usability and security.”

Patches can provide protection.

When it comes to their smartphones, immigrants struggle to apply instinctive caution, according to a study by a team of University of Michigan researchers.

Mingyan Liu, recipient of the 2018 Distinguished Innovator of the Year award, gave a talk about her startup company and participated on a panel discussing data science commercialiation.

A large quantum computer could retroactively decrypt almost all internet communication ever recorded.

U-M profs weigh new business model, European-style regulation

Professor Alex Halderman and the New York Times staged a mock election to demonstrate voting machine vulnerability.

Porche discussed the changing definition of war and how information is playing a greater role than ever.

The vulnerability allows an attacker to manipulate a new intelligent traffic control algorithm and cause severe traffic jams.

In this video, CSE PhD Student Matt Bernhard weighs in on the matter Facebook data harvesting, such as that done by Cambridge Analytica.

Censys is the first commercially available internet-wide scanning tool. It helps IT experts to secure large networks with a constantly changing array of devices.

The researchers say they’re making an unsolvable puzzle: ‘It’s like if you’re solving a Rubik’s Cube and every time you blink, I rearrange it.’

Porche shares the global state of cyber warfare, and how his time at Michigan led him to the front lines.

Prof. Peikert and his co-author received the award at the Fifteenth Theory of Cryptography Conference for their paper on efficient collision-resistant hashing on cyclic lattices.

Their paper introduces a new programming language and tool called Vale that supports flexible, automated verification of high-performance assembly code.

Bugs that are not caught before a product is released can cost companies billions of dollars.

His remarks focused on vulnerabilities in the US voting system and a policy agenda for securing the system against the threat of hacking.

‘Open port’ backdoors are common.

Researchers have for the first time characterized a widespread vulnerability in the software that runs on mobile devices.

Liu’s most recent research involves online learning, modeling of large-scale internet measurement data, and incentive mechanisms for security games.

The USENIX Test of Time Awards recognizes papers presented at its respective conference from at least 10 years ago that have had a lasting impact on their fields.

DROWN allows attackers to break encryption used to protect HTTPS websites and read or steal sensitive communications.

In order to bring HTTPS to everyone, Prof. Halderman joined forces in 2012 with colleagues at Mozilla and the Electronic Frontier Foundation to found Let’s Encrypt, a non-profit certificate authority with the mission of making the switch to HTTPS vastly easier.

One of the paper describes and demonstrates a malicious hardware backdoor. The other demonstrated security failings in a commercial smart home platform.

Analytic software company FICO of San Jose, Calif., bought QuadMetrics to help in its development of a FICO Enterprise Security Score.

New security ramifications exist when laptops and smartphones configured for enterprise systems are used outside the enterprise in the realm of the wider web.

QuadMetrics offers a pair of services to help companies both assess the effectiveness of their security and decide the best way to allocate (or increase) their security budget.

New vulnerabilities form when hardware like electronic locks, thermostats, ovens, sprinklers, lights and motion sensors are networked and set up to be controlled remotely.

Healthcare security company Virta Laboratories, Inc. has received a $750,000 grant from the National Science Foundation Small Business Innovation Research (SBIR) program.

Securing Internet voting requires solving some of the hardest problems in computer security, and even the smallest mistakes can undermine the integrity of the election result.

Her dissertation focused on “opacity,” which captures whether a given secret of the system can be inferred by intruders who observe the behavior of the system.

His paper detailed his use of big data analysis to solve a major problem of cyber security.

Parinaz’s research is in combining communications with economics to assess the security of a network and then apply that to cyber-insurance contracts.

Serial entrepreneur Dug Song (CS BS 1997) and recent alum Jon Oberheide (CSE PhD 2011) founded security firm Duo Security in early 2010 and have rapidly grown their company to serve over 500 customers in 40+ countries around the world.