Many computer-security defenses are reactive---they operate only when security incidents
take place, or immediately thereafter. Recent efforts have attempted to predict security …

To detect fraudulent TLS server certificates and improve the accountability of certification
authorities (CAs), certificate transparency (CT) is proposed to record certificates in publicly …

A 2015 study by Iulia Ion, Rob Reeder, and Sunny Consolvo examined the self-reported
security behavior of security experts and non-experts. They also analyzed what kind of …

Miscreants abuse thousands of domain names every day by launching large-scale attacks
such as phishing or malware campaigns. While some domains are solely registered for …

The correct configuration of HTTPS is a complex set of tasks, which many administrators
have struggled with in the past. Let's Encrypt and Electronic Frontier Foundation's Certbot …

Infrastructure-as-a-Service (IaaS), and more generally the" cloud," like Amazon Web
Services (AWS) or Microsoft Azure, have changed the landscape of system operations on …

BGP is a ga** security hole in today's Internet, as evidenced by numerous Internet
outages and blackouts, repeated traffic hijacking, and surveillance incidents. Yet, despite …

In recent years, multiple security incidents involving Certificate Authority (CA) misconduct
demonstrated the need for strengthened certificate issuance processes. Certificate …

Existing phishing detection techniques mainly rely on blacklists or content-based analysis,
which are not only evadable, but also exhibit considerable detection delays as they are …

Financial systems are rapidly becoming decentralized for fulfilling requirements, such as
distributed transactions, security, trustworthiness and elimination of third-party …