Search Publications

Displaying 101 - 125 of 2840

Youth understandings of online privacy and security: A dyadic study of children and their parents

August 7, 2023

Author(s)

Olivia Williams, Yee-Yin Choong, Kerrianne Buchanan

With youth increasingly accessing and using the internet, it is important to understand what they know about online privacy and security (OPS), and from where they gain this knowledge in order to best support their learning and online practices. Currently

Cybersecurity Definitions for Non-Experts

August 6, 2023

Author(s)

Lorenzo Neil, Julie Haney, Kerrianne Buchanan, Charlotte Healy

Despite the importance of cybersecurity, there is no standard definition nor common terminology for explaining cybersecurity. Existing definitions largely target academics or technical experts but not non-experts (those without cybersecurity proficiency)

Mind the Gap: Exploring Human-Centered Security Researcher-Practitioner Interactions (Extended Abstract)

August 6, 2023

Author(s)

Clyburn Cunningham, Susanne M. Furman, Julie Haney

Our work-in-progress study aims to develop an understanding of current researcher-practitioner interaction points and associated challenges throughout the entire human-centered security research life cycle.

CMVP Approved Security Functions

July 25, 2023

Author(s)

Alexander Calis

The approved security functions listed in this publication replace the ones listed in International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 19790 Annex C and ISO/IEC 24759 6.15, within the context of the

CMVP Approved Sensitive Security Parameter Generation and Establishment Methods

July 25, 2023

Author(s)

Alexander Calis

The approved sensitive security parameter generation and establishment methods listed in this publication replace the ones listed in International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 19790 Annex D and ISO

Introduction to Cybersecurity for Commercial Satellite Operations

July 25, 2023

Author(s)

Matthew Scholl, Theresa Suloway

Space is a newly emerging commercial critical infrastructure sector that is no longer the domain of only national government authorities. Space is an inherently risky environment in which to operate, so cybersecurity risks involving commercial space –

'They're not risky' vs 'It can ruin your whole life': How youth/parent dyads differ in their understandings of online risk

July 23, 2023

Author(s)

Olivia Williams, Kerrianne Buchanan, Yee-Yin Choong

Encountering and/or engaging in risky online behavior is an inherent aspect of being an online user. In particular, youth are vulnerable to such risky be-havior, making it important to know how they understand and think about this risk-taking behavior

Data Guardians: Behaviors and Challenges While Caring for Others' Personal Data

July 23, 2023

Author(s)

Julie Haney, Sandra Prettyman, Mary Frances Theofanos, Susanne M. Furman

Many professional domains require the collection and use of personal data. Protecting systems and data is a major concern in these settings, necessitating that workers who handle personal data under- stand and practice good security and privacy habits

Parents, passwords, and parenting: How parents think about passwords and are involved in their children's password practices

July 23, 2023

Author(s)

Yee-Yin Choong, Kerrianne Buchanan, Olivia Williams

Though much is known about how adults understand and use passwords, little research attention has been paid specifically to parents or, more importantly, to how parents influence their children's password practices. To better understand both the password

Smart Home Device Loss of Support: Consumer Perspectives and Preferences

July 23, 2023

Author(s)

Julie Haney, Susanne M. Furman

Unsupported smart home devices can pose serious safety and security issues for consumers. However, unpatched and vulnerable devices may remain connected because consumers may not be alerted that their devices are no longer supported or do not understand

Analyzing Cybersecurity Definitions for Non-experts

July 4, 2023

Author(s)

Lorenzo Neil, Julie Haney, Kerrianne Buchanan

There is no standard definition for cybersecurity, with current definitions often being technically-complex and targeted at practitioners and academics. However, non-experts (those who do not have security expertise) need an understandable definition to

NICE Framework Competency Areas: Preparing a Job-Ready Cybersecurity Workforce

June 21, 2023

Author(s)

Karen Wetzel

This publication from the National Initiative for Cybersecurity Education (NICE) describes Competency Areas as included in the Workforce Framework for Cybersecurity (NICE Framework), NIST Special Publication 800-181, Revision 1, a fundamental reference for

Status Report on the Final Round of the NIST Lightweight Cryptography Standardization Process

June 16, 2023

Author(s)

Meltem Sonmez Turan, Kerry McKay, Donghoon Chang, Jinkeon Kang, Noah Waller, John M. Kelsey, Lawrence E. Bassham, Deukjo Hong

The National Institute of Standards and Technology (NIST) initiated a public standardization process to select one or more Authenticated Encryption with Associated Data (AEAD) and hashing schemes suitable for constrained environments. In February 2019, 57