CSE M 584 Readings

CSE M 584 Research Component

If you are enrolled in CSE M 584, then you must also read the following papers and submit written reviews by the specified deadline. Late submissions will not be accepted. Your evaluations should have the following form:

Your name.
Paper title and author(s).
What problem does the paper address?
Two (or more) most important new ideas in the paper, and why.
What is the approach used to solve the problem?
How does the paper support or otherwise justify its arguments and conclusions?
Two ways the paper could be improved, and why.
Two important, open research questions on the topic, and why they matter.

You must submit evaluations as a PDF file. You should upload the evaluations to the online Catalyst dropbox. Your evaluation for each reading must be less than one page long, be single-spaced, use 12pt font, and have at least 1 inch margins; We expect for most paper evaluations to be approximately 1/2 to 3/4 pages long.

You are welcome to, and in fact encouraged to, discuss the papers with other students in the class. However, you must write the evaluations on your own.

Oct 8, 5pm, "Comprehensive Experimental Analyses of Automotive Attack Surfaces" (Usenix Security 2011)
Oct 15, 5pm, "The quest to replace passwords: A framework for comparative evaluation of web authentication schemes" (Oakland 2012)
Oct 22, 5pm, "Re: CAPTCHAs -- Understanding CAPTCHA-Solving Services in an Economic Context" (Usenix Security 2010)
Oct 29, 5pm, "An Empirical Study of Privacy-Violating Information Flows in JavaScript Web Applications" (CCS 2010)
Nov 5, 5pm, "Detecting and Defending Against Third-Party Tracking on the Web" (NSDI 2012)
Nov 12, 5pm, "App Isolation: Get the Security of Multiple Browsers with Just One" (CCS 2011)
Nov 19, 5pm, "Analyzing Inter-Application Communications in Android" (MobiSys 2011)
Dec 3, 5pm, "Tor: The Second-Generation Onion Router" (USENIX Security 2004)

You are allowed to look at other top computer security conferences, like USENIX Security 2013 https://www.usenix.org/conference/usenixsecurity13/tech-schedule/technical-sessions for more recent papers. You can substitute any paper from this conference for one of the papers above, if one of these papers interest you.

Extra Credit: You may also read up to five additional papers for extra credit. CSE 484 students may also read up to five papers, from USENIX Security 2013 or the above list, for extra credit.