Just 30 Libraries Account for More Than Half of Sensitive Data Taps
by Byron Spice | Monday, September 11, 2017
Smartphone apps that share users' locations, contacts and other sensitive information with third parties often do so through a relative handful of services called third-party libraries, suggesting a new strategy for protecting privacy, Carnegie Mellon University researchers say.
Controlling access to these third-party libraries, which help app developers make money by targeting people with ads or compiling marketing profiles, promises to be an effective way to limit the unwanted release of personal information. The research team developed an app...
by Daniel Tkacik | Thursday, September 7, 2017
Chances are, you’re reading this article on a web browser that uses HTTPS, the protocol over which data is sent between a web browser and the website users are connected to. In fact, nearly half of all web traffic passes through HTTPS. Despite the “S” for security in “HTTPS,” this protocol is far from perfectly secure.
“The HTTPS ecosystem has seen a long and somewhat depressing series of bugs,” says Bryan Parno, an associate professor of Computer Science and ...
Friday, August 4, 2017
School of Computer Science students captained teams that finished first and second in the Cambridge2Cambridge (C2C) three-day cybersecurity competition that ended July 27 at the University of Cambridge.
Robert Xiao, a Ph.D. student in the Human-Computer Interaction Institute, led the Unstoppables team, which won the £9,000 top prize, and won the £3,000 Leidos C2C Individual award as well. Carolina Zarate, a senior computer science major, captained the CrypticCrushers team, which took the second-place £4500 prize.
C2C is organized jointly by the University of Cambridge and the...
by Daniel Tkacik | Monday, July 31, 2017
Carnegie Mellon University’s hacking team, the Plaid Parliament of Pwning or PPP, won its fourth World Series of Hacking title this weekend at the DefCon security conference in Las Vegas.
With four titles under their belt, the team has more wins than any other team in the 21-year history of the international competition. The 10 current members of PPP include eight undergraduates from the School of Computer Science and one Ph.D. student in SCS’s Human-Computer Interaction Institute.
''The problem-solving skills required to win these contests mimic those needed by governments...
Robots That Readily Expand or Shrink Would Be Possible
by Byron Spice | Thursday, July 27, 2017
Carnegie Mellon University researchers have found a way to design telescoping structures that can bend and twist, enabling robots of various shapes to collapse themselves for transport or entering tiny spaces, and making possible robotic arms and claws that can reach over or around large obstacles.
The researchers devised algorithms that can take a target shape that includes curves or twists and design a telescoping structure to match. They also created a design tool that enables even a novice to create complex, collapsible assemblies. The design possibilities range from something...
by Byron Spice | Tuesday, July 25, 2017
What do Pittsburgh's "food boom," the establishment of Uber's Advanced Technologies Center and the return of Jean Yang to her hometown have in common? The School of Computer Science, says writer Steven Kurutz in the July 23 edition of The New York Times.
Kurutz' Style section article, "Pittsburgh Gets a Tech Makeover," explains how SCS has helped change not only the economy of Pittsburgh, but also its culture...
by Daniel Tkacik | Tuesday, July 25, 2017
At a time when cybersecurity pervades news headlines, it's fitting that a team of cybersecurity experts from Carnegie Mellon University may grab an unprecedented win this weekend in Las Vegas.
Carnegie Mellon's competitive hacking team, the Plaid Parliament of Pwning, looks to win a fourth title at this year's DefCon cybersecurity conference. No other team has ever won more than three times in DefCon's 21-year history of what many refer to as the "World Series of Hacking."
"More now than ever...