Thomas Ristenpart

Nicola Dell

CoRR, 2024

Navigating Traumatic Stress Reactions During Computer Security Interventions.

[BibT_eX]

[DOI]

Proceedings of the 33rd USENIX Security Symposium, 2024

Exploiting Leakage in Password Managers via Injection Attacks.

[BibT_eX]

[DOI]

Proceedings of the 33rd USENIX Security Symposium, 2024

Private Hierarchical Governance for Encrypted Messaging.

[BibT_eX]

[DOI]

Proceedings of the IEEE Symposium on Security and Privacy, 2024

Injection Attacks Against End-to-End Encrypted Applications.

[BibT_eX]

[DOI]

Andrés Fábrega

Carolina Ortega Pérez

Proceedings of the IEEE Symposium on Security and Privacy, 2024

SoK: Safer Digital-Safety Research Involving At-Risk Users.

[BibT_eX]

[DOI]

Jill Palzkill Woelfer

Proceedings of the IEEE Symposium on Security and Privacy, 2024

2023

Context Discovery and Commitment Attacks: How to Break CCM, EAX, SIV, and More.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2023

Araña: Discovering and Characterizing Password Guessing Attacks in Practice.

[BibT_eX]

[DOI]

Proceedings of the 32nd USENIX Security Symposium, 2023

Account Security Interfaces: Important, Unintuitive, and Untrustworthy.

[BibT_eX]

[DOI]

Proceedings of the 32nd USENIX Security Symposium, 2023

The Digital-Safety Risks of Financial Technologies for Survivors of Intimate Partner Violence.

[BibT_eX]

[DOI]

Proceedings of the 32nd USENIX Security Symposium, 2023

2022

Characterizing Alternative Monetization Strategies on YouTube.

[BibT_eX]

[DOI]

Proc. ACM Hum. Comput. Interact., 2022

Authenticated Encryption with Key Identification.

[BibT_eX]

[DOI]

Julia Len

IACR Cryptol. ePrint Arch., 2022

Might I Get Pwned: A Second Generation Compromised Credential Checking Service.

[BibT_eX]

[DOI]

Proceedings of the 31st USENIX Security Symposium, 2022

Increasing Adversarial Uncertainty to Scale Private Similarity Testing.

[BibT_eX]

[DOI]

Proceedings of the 31st USENIX Security Symposium, 2022

Gossamer: Securely Measuring Password-based Logins.

[BibT_eX]

[DOI]

Proceedings of the 31st USENIX Security Symposium, 2022

Care Infrastructures for Digital Security in Intimate Partner Violence.

[BibT_eX]

[DOI]

Proceedings of the CHI '22: CHI Conference on Human Factors in Computing Systems, New Orleans, LA, USA, 29 April 2022, 2022

Trauma-Informed Computing: Towards Safer Technology Experiences for All.

[BibT_eX]

[DOI]

Proceedings of the CHI '22: CHI Conference on Human Factors in Computing Systems, New Orleans, LA, USA, 29 April 2022, 2022

2021

Orca: Blocklisting in Sender-Anonymous Messaging.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2021

A Fast and Simple Partially Oblivious PRF, with Applications.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2021

Might I Get Pwned: A Second Generation Password Breach Alerting Service.

[BibT_eX]

[DOI]

CoRR, 2021

The Role of Computer Security Customer Support in Helping Survivors of Intimate Partner Violence.

[BibT_eX]

[DOI]

Proceedings of the 30th USENIX Security Symposium, 2021

Searching Encrypted Data with Size-Locked Indexes.

[BibT_eX]

[DOI]

Proceedings of the 30th USENIX Security Symposium, 2021

SoK: Hate, Harassment, and the Changing Landscape of Online Abuse.

[BibT_eX]

[DOI]

Proceedings of the 42nd IEEE Symposium on Security and Privacy, 2021

A Digital Safety Dilemma: Analysis of Computer-Mediated Computer Security Interventions for Intimate Partner Violence During COVID-19.

[BibT_eX]

[DOI]

Proceedings of the CHI '21: CHI Conference on Human Factors in Computing Systems, 2021

2020

"So-called privacy breeds evil": Narrative Justifications for Intimate Partner Surveillance in Online Forums.

[BibT_eX]

[DOI]

Proc. ACM Hum. Comput. Interact., 2020

Partitioning Oracle Attacks.

[BibT_eX]

[DOI]

Julia Len

IACR Cryptol. ePrint Arch., 2020

PANCAKE: Frequency Smoothing for Encrypted Data Stores.

[BibT_eX]

[DOI]

Paula Barmaimon Mendelberg

Anurag Khandelwal

Marie-Sarah Lacharité

IACR Cryptol. ePrint Arch., 2020

Guarding Serverless Applications with SecLambda.

[BibT_eX]

[DOI]

CoRR, 2020

The Tools and Tactics Used in Intimate Partner Surveillance: An Analysis of Online Infidelity Forums.

[BibT_eX]

[DOI]

Proceedings of the 29th USENIX Security Symposium, 2020

The Many Kinds of Creepware Used for Interpersonal Attacks.

[BibT_eX]

[DOI]

Kevin A. Roundy

Proceedings of the 2020 IEEE Symposium on Security and Privacy, 2020

Towards Measuring Adversarial Twitter Interactions against Candidates in the US Midterm Elections.

[BibT_eX]

[DOI]

Yiqing Hua

Mor Naaman

Proceedings of the Fourteenth International AAAI Conference on Web and Social Media, 2020

Characterizing Twitter Users Who Engage in Adversarial Interactions against Political Candidates.

[BibT_eX]

[DOI]

Yiqing Hua

Mor Naaman

Proceedings of the CHI '20: CHI Conference on Human Factors in Computing Systems, 2020

2019

"Is my phone hacked?" Analyzing Clinical Computer Security Interventions with Survivors of Intimate Partner Violence.

[BibT_eX]

[DOI]

Proc. ACM Hum. Comput. Interact., 2019

Traceback for End-to-End Encrypted Messaging.

[BibT_eX]

[DOI]

Nirvan Tyagi

Ian Miers

IACR Cryptol. ePrint Arch., 2019

Asymmetric Message Franking: Content Moderation for Metadata-Private End-to-End Encryption.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2019

Fast Message Franking: From Invisible Salamanders to Encryptment.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2019

Clinical Computer Security for Victims of Intimate Partner Violence.

[BibT_eX]

[DOI]

Proceedings of the 28th USENIX Security Symposium, 2019

Beyond Credential Stuffing: Password Similarity Models Using Neural Networks.

[BibT_eX]

[DOI]

Proceedings of the 2019 IEEE Symposium on Security and Privacy, 2019

Protocols for Checking Compromised Credentials.

[BibT_eX]

[DOI]

Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security, 2019

2018

The Tao of Inference in Privacy-Protected Databases.

[BibT_eX]

[DOI]

Vincent Bindschaedler

Proc. VLDB Endow., 2018

Blind Certificate Authorities.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2018

BurnBox: Self-Revocable Encryption in a World Of Compelled Access.

[BibT_eX]

[DOI]

Nirvan Tyagi

Muhammad Haris Mughees

Ian Miers

IACR Cryptol. ePrint Arch., 2018

When Textbook RSA is Used to Protect the Privacy of Hundreds of Millions of Users.

[BibT_eX]

[DOI]

Jeffrey Knockel

Jedidiah R. Crandall

CoRR, 2018

Peeking Behind the Curtains of Serverless Platforms.

[BibT_eX]

[DOI]

Proceedings of the 2018 USENIX Annual Technical Conference, 2018

The Spyware Used in Intimate Partner Violence.

[BibT_eX]

[DOI]

Proceedings of the 2018 IEEE Symposium on Security and Privacy, 2018

"A Stalker's Paradise": How Intimate Partner Abusers Exploit Technology.

[BibT_eX]

[DOI]

Diana Freed

Jackeline Palmer

Diana Elizabeth Minchala

Karen Levy

Nicola Dell

Proceedings of the 2018 CHI Conference on Human Factors in Computing Systems, 2018

2017

Digital Technologies and Intimate Partner Violence: A Qualitative Analysis with Multiple Stakeholders.

[BibT_eX]

[DOI]

Diana Freed

Jackeline Palmer

Diana Elizabeth Minchala

Karen Levy

Nicola Dell

Proc. ACM Hum. Comput. Interact., 2017

Rethinking Security in the Era of Cloud Computing.

[BibT_eX]

[DOI]

IEEE Secur. Priv., 2017

A New Distribution Sensitive Secure Sketch and a Comparison Between Approaches to Typo-Tolerant Authentication.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2017

Modifying an Enciphering Scheme after Deployment.

[BibT_eX]

[DOI]

Yuval Yarom

IACR Cryptol. ePrint Arch., 2017

Why Your Encrypted Database Is Not Secure.

[BibT_eX]

[DOI]

Vitaly Shmatikov

IACR Cryptol. ePrint Arch., 2017

Message Franking via Committing Authenticated Encryption.

[BibT_eX]

[DOI]

Jiahui Lu

IACR Cryptol. ePrint Arch., 2017

Key Rotation for Authenticated Encryption.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2017

The TypTop System: Personalized Typo-Tolerant Password Checking.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2017

Side-Channel Attacks on Shared Search Indexes.

[BibT_eX]

[DOI]

Liang Wang

Jiahui Lu

Vincent Bindschaedler

David Cash

Proceedings of the 2017 IEEE Symposium on Security and Privacy, 2017

A New Distribution-Sensitive Secure Sketch and Popularity-Proportional Hashing.

[BibT_eX]

[DOI]

Proceedings of the Advances in Cryptology - CRYPTO 2017, 2017

Machine Learning Models that Remember Too Much.

[BibT_eX]

[DOI]

Congzheng Song

Vitaly Shmatikov

Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, 2017

Using Program Analysis to Synthesize Sensor Spoofing Attacks.

[BibT_eX]

[DOI]

Ivan Pustogarov

Vitaly Shmatikov

Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security, 2017

2016

Network Traffic Obfuscation and Automated Internet Censorship.

[BibT_eX]

[DOI]

Lucas Dixon

IEEE Secur. Priv., 2016

Secure Channel Injection and Anonymous Proofs of Account Ownership.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2016

Honey Encryption Beyond Message Recovery Security.

[BibT_eX]

[DOI]

Joseph Jaeger

Qiang Tang

IACR Cryptol. ePrint Arch., 2016

Leakage-Abuse Attacks against Order-Revealing Encryption.

[BibT_eX]

[DOI]

Kevin Sekniqi

Vincent Bindschaedler

Muhammad Naveed

IACR Cryptol. ePrint Arch., 2016

Breaking Web Applications Built On Top of Encrypted Data.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2016

A Formal Treatment of Backdoored Pseudorandom Generators.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2016

Leakage-Abuse Attacks Against Searchable Encryption.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2016

Controlling UAVs with Sensor Input Spoofing Attacks.

[BibT_eX]

[DOI]

Proceedings of the 10th USENIX Workshop on Offensive Technologies, 2016

Stealing Machine Learning Models via Prediction APIs.

[BibT_eX]

[DOI]

Proceedings of the 25th USENIX Security Symposium, 2016

pASSWORD tYPOS and How to Correct Them Securely.

[BibT_eX]

[DOI]

Proceedings of the IEEE Symposium on Security and Privacy, 2016

CQSTR: Securing Cross-Tenant Applications with Cloud Containers.

[BibT_eX]

[DOI]

Proceedings of the Seventh ACM Symposium on Cloud Computing, 2016

2015

Surreptitiously Weakening Cryptographic Systems.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2015

The Pythia PRF Service.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2015

Cracking-Resistant Password Vaults using Natural Language Encoders.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2015

A Placement Vulnerability Study in Multi-Tenant Public Clouds.

[BibT_eX]

[DOI]

Yinqian Zhang

Michael M. Swift

Proceedings of the 24th USENIX Security Symposium, 2015

Seeing through Network-Protocol Obfuscation.

[BibT_eX]

[DOI]

Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, 2015

Model Inversion Attacks that Exploit Confidence Information and Basic Countermeasures.

[BibT_eX]

[DOI]

Matt Fredrikson

Somesh Jha

Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, 2015

2014

Honey Encryption: Encryption beyond the Brute-Force Barrier.

[BibT_eX]

[DOI]

Ari Juels

IEEE Secur. Priv., 2014

Honey Encryption: Security Beyond the Brute-Force Bound.

[BibT_eX]

[DOI]

Ari Juels

IACR Cryptol. ePrint Arch., 2014

Scheduler-based Defenses against Cross-VM Side-channels.

[BibT_eX]

[DOI]

Michael M. Swift

Proceedings of the 23rd USENIX Security Symposium, San Diego, CA, USA, August 20-22, 2014., 2014

LibFTE: A Toolkit for Constructing Practical, Format-Abiding Encryption Schemes.

[BibT_eX]

[DOI]

Proceedings of the 23rd USENIX Security Symposium, San Diego, CA, USA, August 20-22, 2014., 2014

Privacy in Pharmacogenetics: An End-to-End Case Study of Personalized Warfarin Dosing.

[BibT_eX]

[DOI]

Proceedings of the 23rd USENIX Security Symposium, San Diego, CA, USA, August 20-22, 2014., 2014

On the Practical Exploitability of Dual EC in TLS Implementations.

[BibT_eX]

[DOI]

Proceedings of the 23rd USENIX Security Symposium, San Diego, CA, USA, August 20-22, 2014., 2014

Not-So-Random Numbers in Virtualized Linux and the Whirlwind RNG.

[BibT_eX]

[DOI]

Proceedings of the 2014 IEEE Symposium on Security and Privacy, 2014

WhoWas: A Platform for Measuring Web Deployments on IaaS Clouds.

[BibT_eX]

[DOI]

Proceedings of the 2014 Internet Measurement Conference, 2014

A Day Late and a Dollar Short: The Case for Research on Cloud Billing Systems.

[BibT_eX]

[DOI]

Proceedings of the 6th USENIX Workshop on Hot Topics in Cloud Computing, 2014

Cross-Tenant Side-Channel Attacks in PaaS Clouds.

[BibT_eX]

[DOI]

Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security, 2014

Formatted Encryption Beyond Regular Languages.

[BibT_eX]

[DOI]

Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security, 2014

2013

To Hash or Not to Hash Again? (In)differentiability Results for H<sup>2</sup> and HMAC.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2013

DupLESS: Server-Aided Encryption for Deduplicated Storage.

[BibT_eX]

[DOI]

Sriram Keelveedhi

IACR Cryptol. ePrint Arch., 2013

FIE on Firmware: Finding Vulnerabilities in Embedded Systems Using Symbolic Execution.

[BibT_eX]

[DOI]

Proceedings of the 22th USENIX Security Symposium, Washington, DC, USA, August 14-16, 2013, 2013

Next stop, the cloud: understanding modern web service deployment in EC2 and azure.

[BibT_eX]

[DOI]

Proceedings of the 2013 Internet Measurement Conference, 2013

The Mix-and-Cut Shuffle: Small-Domain Encryption Secure against N Queries.

[BibT_eX]

[DOI]

Scott Yilek

Proceedings of the Advances in Cryptology - CRYPTO 2013, 2013

Protocol misidentification made easy with format-transforming encryption.

[BibT_eX]

[DOI]

Proceedings of the 2013 ACM SIGSAC Conference on Computer and Communications Security, 2013

2012

Format-Transforming Encryption: More than Meets the DPI.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2012

Multi-Instance Security and its Application to Password-Based Cryptography.

[BibT_eX]

[DOI]

Stefano Tessaro

IACR Cryptol. ePrint Arch., 2012

Message-Locked Encryption and Secure Deduplication.

[BibT_eX]

[DOI]

Sriram Keelveedhi

IACR Cryptol. ePrint Arch., 2012

Hedged Public-key Encryption: How to Protect against Bad Randomness.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2012

Security Analysis of Smartphone Point-of-Sale Systems.

[BibT_eX]

[DOI]

Proceedings of the 6th USENIX Workshop on Offensive Technologies, 2012

Randomness Condensers for Efficiently Samplable, Seed-Dependent Sources.

[BibT_eX]

[DOI]

Yevgeniy Dodis

Salil P. Vadhan

Proceedings of the Theory of Cryptography - 9th Theory of Cryptography Conference, 2012

Peek-a-Boo, I Still See You: Why Efficient Traffic Analysis Countermeasures Fail.

[BibT_eX]

[DOI]

Proceedings of the IEEE Symposium on Security and Privacy, 2012

To Hash or Not to Hash Again? (In)Differentiability Results for H 2 and HMAC.

[BibT_eX]

[DOI]

Proceedings of the Advances in Cryptology - CRYPTO 2012, 2012

More for your money: exploiting performance heterogeneity in public clouds.

[BibT_eX]

[DOI]

Benjamin Farley

Ari Juels

Kevin D. Bowers

Michael M. Swift

Proceedings of the ACM Symposium on Cloud Computing, SOCC '12, 2012

Cross-VM side channels and their use to extract private keys.

[BibT_eX]

[DOI]

Proceedings of the ACM Conference on Computer and Communications Security, 2012

Resource-freeing attacks: improve your cloud performance (at your neighbor's expense).

[BibT_eX]

[DOI]

Proceedings of the ACM Conference on Computer and Communications Security, 2012

2011

Careful with Composition: Limitations of Indifferentiability and Universal Composability.

[BibT_eX]

[DOI]

Hovav Shacham

IACR Cryptol. ePrint Arch., 2011

Got traffic?: an evaluation of click traffic providers.

[BibT_eX]

[DOI]

Proceedings of the 2011 Joint WICOW/AIRWeb Workshop on Web Quality, 2011

Careful with Composition: Limitations of the Indifferentiability Framework.

[BibT_eX]

[DOI]

Hovav Shacham

Proceedings of the Advances in Cryptology - EUROCRYPT 2011, 2011

Tag Size Does Matter: Attacks and Proofs for the TLS Record Protocol.

[BibT_eX]

[DOI]

Kenneth G. Paterson

Proceedings of the Advances in Cryptology - ASIACRYPT 2011, 2011

2010

New approaches for the design and analysis of cryptographic hash functions.

[BibT_eX]

[DOI]

PhD thesis, 2010

When Good Randomness Goes Bad: Virtual Machine Reset Vulnerabilities and Hedging Deployed Cryptography.

[BibT_eX]

[DOI]

Scott Yilek

Proceedings of the Network and Distributed System Security Symposium, 2010

Random Oracles with(out) Programmability.

[BibT_eX]

[DOI]

Proceedings of the Advances in Cryptology - ASIACRYPT 2010, 2010

2009

Salvaging Merkle-Damgard for Practical Applications.

[BibT_eX]

[DOI]

Yevgeniy Dodis

IACR Cryptol. ePrint Arch., 2009

Format-Preserving Encryption.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2009

Simulation without the Artificial Abort: Simplified Proof and Improved Concrete Security for Waters' IBE Scheme.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2009

Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds.

[BibT_eX]

[DOI]

Proceedings of the 2009 ACM Conference on Computer and Communications Security, 2009

2008

How to Build a Hash Function from any Collision-Resistant Function.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2008

Deterministic Encryption: Definitional Equivalences and Constructions without Random Oracles.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2008

Privacy-Preserving Location Tracking of Lost or Stolen Devices: Cryptographic Techniques and Replacing Trusted Third Parties with DHTs.

[BibT_eX]

[DOI]

Proceedings of the 17th USENIX Security Symposium, 2008

2007

The Power of Proofs-of-Possession: Securing Multiparty Signatures against Rogue-Key Attacks.

[BibT_eX]

[DOI]

Scott Yilek

IACR Cryptol. ePrint Arch., 2007

How to Enrich the Message Space of a Cipher.

[BibT_eX]

[DOI]

Phillip Rogaway

IACR Cryptol. ePrint Arch., 2007

Hash Functions in the Dedicated-Key Setting: Design Choices and MPP Transforms.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2007

2006

Multi-Property-Preserving Hash Domain Extension and the EMD Transform.

[BibT_eX]

[DOI]