Research – Secure Systems Group

Common sense applications of trusted hardware

Oct 19, 2017Andrew PaverdHardware Security, Opinion, Research, TEEs

Hardware security mechanisms like ARM TrustZone and Intel SGX have been widely available for a while and the academic research community is finally paying attention. Whether these mechanisms are safe and useful for ordinary people is hotly debated. In this post, we sketch two of our “common sense” applications of hardware-based trusted execution environments. Hardware […]

Leading European cybersecurity research organizations and Intel Labs join forces to conduct research on Collaborative Autonomous & Resilient Systems

Sep 12, 2017Niina IdänheimoInformation security, Research, Secure SystemsAalto University, autonomous systems, Intel, intelligent systems, IoT, machine learning

The new research institute operates in the fields of drones, self-driving vehicles, and collaborative systems in industrial automation.

Intel and leading European universities in the field of cybersecurity and privacy will open a new initiative for “Collaborative Autonomous & Resilient Systems” (CARS) to tackle security, privacy, and functional safety challenges of autonomous systems that may collaborate with each other – examples are drones, self-driving vehicles, or industrial automation systems.

(more…)

Voiko älykodissa elää turvassa? Entä mitä riskejä liittyy fiksuun sähköverkkoon tai kulkuneuvoihin?

Sep 4, 2017Niina IdänheimoEvents, IoT, Research

Puettava laite voi tehdä sinusta haavoittuvan – älykkäiden laitteiden tietoturvaa puidaan Aalto-yliopiston asiantuntijaseminaarissa 7. syyskuutaTervetuloa kuulemaan tietoturvan huippuasiantuntijoiden esityksiä Aalto-yliopistoon. Seminaarin aluksi julkaistaan uusi Intel Labsin yhteistyöaloite, jossa Aalto-yliopistolla on merkittävä rooli useiden muiden kansainvälisten yliopistojen rinnalla. Aika: Torstaina 7. syyskuuta klo 9.00–16.30 Paikka: Tietotekniikan talo, luentosali T1, Konemiehentie 1, Espoo. Seminaarissa puhuvat tietoturva-alan kiinnostavimmat […]

Off the hook: A New Privacy-Friendly Phishing Protection Add-on

Jun 28, 2016N. AsokanMachine Learning, Phishing, Research

Phishing attacks are those in which unsuspecting users are lured to a rogue website that mimics a legitimate website and are fooled into giving up their login credentials or other sensitive information to the rogue site. It has been a serious threat against ordinary users on the Internet. Current solutions for steering users away from […]

OmniShare: Encrypted Cloud Storage for all your Devices

Feb 22, 2016Andrew PaverdCloud, Mobile, Research

Cloud storage services like Dropbox and Google Drive are widely used, but security and privacy are often cited as serious concerns. One solution is to encrypt data on the client devices before it is uploaded, but this introduces a “key distribution” problem – how do you share the decryption key with all your devices? Some […]

Zero-effort authentication : useful but difficult to get right

Feb 15, 2016N. AsokanAuthentication, Mobile, Research, Usability

At the forthcoming 2016 Networking and Distributed Systems Symposium we present case study on designing systems that are simultaneously secure and easy-to-use. Transparent (“zero-effort”) authentication is a very desirable goal. But designing and analyzing them correctly is a challenge. At the 2014 IEEE Security and Privacy Symposium, a top conference on information security and privacy, […]

Practical attacks against 4G (LTE) access network protocols

Oct 27, 2015N. AsokanMobile, Research

(Countries with commercial LTE service as of December 7, 2014 shaded in red; Source Wikipedia article) 4G mobile communication networks, also known as “LTE” (Long Term Evolution) are widely deployed. How good is LTE security? Ravishankar Borgaonkar, a postdoc in my research group, and Altaf Shaik, a doctoral student at TU Berlin, discovered several surprising lapses […]