Advancements in information technology often task users with complex and consequential
privacy and security decisions. A growing body of research has investigated individuals' …

In this short editorial we present some thoughts on present and future trends in Artificial
Intelligence (AI) generally, and Machine Learning (ML) specifically. Due to the huge ongoing …

Vulnerabilities in Android code--including but not limited to insecure data storage,
unprotected inter-component communication, broken TLS implementations, and violations of …

Rather than recognizing software engineers' limitations, modern security practice has
created an adversarial relationship between security software designers and the developers …

Vulnerabilities persist despite existing software security initiatives and best practices. This
paper focuses on the human factors of software security, including human behaviour and …

Despite the additional protection it affords, two-factor authentication (2FA) adoption
reportedly remains low. To better understand 2FA adoption and its barriers, we observed the …

Research has brought forth a variety of authentication systems to mitigate observation
attacks. However, there is little work about shoulder surfing situations in the real world. We …

Although many users create predictable passwords, the extent to which users realize these
passwords are predictable is not well understood. We investigate the relationship between …

Usable privacy and security researchers have developed a variety of approaches to
represent risk to research participants. To understand how these approaches are used and …

Undocumented immigrants in the United States face risks of discrimination, surveillance,
and deportation. We investigate their technology use, risk perceptions, and protective …