• Secure Data Transmission with Ultrasound

    Due to the Internet of Things (IoT), an increasing number of devices have learned to communicate with each other. Ultrasound communication is an entirely new method for data exchange between IoT devices and mobile phones. Researchers have now developed a first open communication protocol including an open-source development kit for ultrasound communication which makes near-field communication safer.

  • UAH to Offer H4Di Cybersecurity Course

    The University of Alabama in Huntsville (UAH) says it will be the first in the state to offer the Hacking for Defense (H4Di) cybersecurity class beginning in spring semester 2020. H4Di teaches students to work with the defense and intelligence communities to rapidly address the nation’s emerging threats and security challenges.

  • National Labs Host DOE CyberForce Competition

    Five teams of college students will square off at the U.S. Department of Energy’s (DOE) Lawrence Berkeley National Laboratory (Berkeley Lab) on 16 November as part of DOE’s fifth CyberForce Competition. The event, held simultaneously at ten of the DOE’s National Laboratories across the United States, will challenge 105 college teams to defend a simulated energy infrastructure from cyberattacks. The CyberForce Competition is designed to inspire and develop the next generation of energy sector cybersecurity professionals by giving them a chance to hone their skills during interactive and realistic scenarios.

  • CISA, DARPA Offer Look Into their Dealings with Deepfakes

    Agency and industry officials last week offered details of their efforts to improve public resiliency, streamline communication, and accelerate technical solutions to counter the threats posed by deepfakes and other disinformation techniques ahead of next year’s election. “Essentially, if you generalize a bit, these are attacks on knowledge, right, which underpins everything that we do,” Matt Turek, program manager for the Defense Advanced Research Projects Agency’s (DARPA) Information Innovation Office said on a panel at the Center for Strategic and International Studies (CSIS) Wednesday. “It underpins our trust in institutions and organizations.”

  • Browser Tool Helps Researchers ID Malicious Websites, Code

    Researchers from North Carolina State University have developed an open-source tool that allows users to track and record the behavior of JavaScript programs without alerting the websites that run those programs. The tool, called VisibleV8, runs in the Chrome browser and is designed to detect malicious programs that are capable of evading existing malware detection systems.

  • Russia Will Test Its Ability to Disconnect from the Internet

    Russia will test its internal RuNet network to see whether the country can function without the global internet, the Russian government announced Monday. The tests will begin after Nov. 1, recur at least annually, and possibly more frequently. It’s the latest move in a series of technical and policy steps intended to allow the Russian government to cut its citizens off from the rest of the world. Patrick Tucker writes that RuNet isn’t expected to improve the online experience for Russian people or companies. It’s all about control, making the country more technologically independent, and reducing the Putin regime’s vulnerability to popular uprising.

  • Patching Legacy Software Vulnerabilities Rapidly in Mission-Critical Systems

    There are a vast number of diverse computing devices used to run the critical infrastructure our national security depends on – from transportation systems to electric grids to industrial equipment. While the amount of deployed vulnerable software is growing exponentially, the effective means of addressing known vulnerabilities at scale are limited. DARPA seeks to develop targeted software patches to rapidly repair legacy binaries in mission-critical systems, while assuring system functionality is not affected.

  • Making the Internet Faster, More Secure

    A collaborative effort aims to create a nationwide research infrastructure that will enable the computer science and networking community to develop and test novel architectures that could yield a faster, more secure internet. Dubbed “FABRIC,” the four-year, $20 million project is intended to support exploratory research, at scale, in computer networking, distributed computing systems, and next-generation applications.

  • In a World of Cyber Threats, the Push for Cyber Peace is Growing

    Digital conflict and military action are increasingly intertwined, and civilian targets – private businesses and everyday internet users alike – are vulnerable in the digital crossfire. But there are forces at work trying to promote peace online. It will be a tough challenge.

  • Rating Security of Internet-Connected Devices

    If you’re in the market for an internet-connected garage door opener, doorbell, thermostat, security camera, yard irrigation system, slow cooker—or even a box of connected light bulbs—a new website can help you understand the security issues these shiny new devices might bring into your home.

  • Winning the Cyber War Is Not a Job the Army Can Do Alone

    Britain has not been legally at war since 1945. Despite this, we have been in perpetual conflict since then and, apart from 1969, have lost soldiers on operations every single year. Today the sphere of that conflict now very much includes the online world where our adversaries – from Russian disinformation disseminators to IS’s terrorist cyber warriors – are a shadowy, but perpetual threat. In this increasingly antagonistic world, we must organize ourselves accordingly.

  • Making it Easier to Program and Protect the Web

    Behind the scenes of every web service, from a secure web browser to an entertaining app, is a programmer’s code, carefully written to ensure everything runs quickly, smoothly, and securely. MIT Professor Adam Chlipala builds tools to help programmers more quickly generate optimized, secure code.

  • The Russian Submarine that Caught Fire and Killed 14 May Have Been Designed to Cut Undersea Internet Cables

    A Russian navy submarine caught fire on Monday, killing 14 sailors on board. Two independent Russian news outlets reported that the vessel was the AS-12 “Losharik,” a nuclear-powered vessel that US officials have said is designed to cut undersea cables that keep the world’s internet running. Alexandra Ma and Ryan Pickrell write in Business Insider that Moscow officials have remained secretive about the type of vessel and whether it was nuclear-powered, prompting accusations of a cover-up. President Vladimir Putin canceled a scheduled event on Tuesday and told his defense minister to “personally receive reports” on the investigation into the accident, Radio Free Europe/Radio Liberty reported.

  • Global cybersecurity experts gather at Israel’s Cyber Week

    The magnitude of Israel’s cybersecurity industry was on full show this week at the 9th Annual Cyber Week Conference at Tel Aviv University. The largest conference on cyber tech outside of the United States, Cyber Week saw 8,000 attendees from 80 countries hear from more than 400 speakers on more than 50 panels and sessions.

  • The U.S. needs an industrial policy for cybersecurity

    Industrial policies are appropriate when market failures have led to the under-provision of a good or service. The cybersecurity industry’s growth has been held back for several reasons, including intractable labor shortages. Vinod K. Aggarwal and Andrew W. Reddie write in Defense One that both the United States and United Kingdom suffer from a documented shortage of skilled programmers and computer scientists working on cybersecurity issues, and the U.S. alone is projected to have a shortage of 1.2 million professionals by 2022, according to the Center for Strategic and International Studies. The market has also been hindered by so-called “information problems,” as firms are often not aware of their own vulnerabilities and avoid sharing information about data breaches given the reputation costs associated with disclosure. So what can the government do about it?