Chapter 1 WHAT PRICE PRIVACY? (and why identity theft is about neither identity nor theft) (2009)
It is commonplace to note that in surveys people claim to place a high value on privacy while they paradoxically throw away their privacy in exchange for a free hamburger or a two dollar discount on...
Experiences Threat Modeling at Microsoft (2009)
Abstract. Describes a decade of experience threat modeling products and services at Microsoft. Describes the current threat modeling methodology used in the Security Development Lifecycle. The...
Apparent Weaknesses in the Security Dynamics Client/Server Protocol Preliminary Version (2007)
Abstract. The protocol used by Security Dynamics has substantial flaws which appear to be exploitable and reduce the security of a system using Security Dynamics software to that of a username and...
Joan Feigenbaum, Michael J. Freedman, Tomas Sander, Adam Shostack
Internet-based commerce provides great opportunities for merchants, consumers, and business a#liates, but it may seriously threaten users ' privacy. Some of the paths to loss of privacy are...
Anonymous Blogging Submission (2006)
Adam Shostack was once Most Evil Genius for Zero Knowledge systems. He is now coordinating a project to set up anonymous blogs for people in repressive nations, and would like to tell the folks...
people wont pay for privacy,” reconsidered (2003)
Privacy consistently tops polls regarding the concerns of Americans. However, after the change in focus or failure of several prominent companies selling privacy technology, it also seems that...
Economic Barriers to the Deployement of Existing Privacy (2002)
Joan Feigenbaum, Michael J. Freedman, Tomas S, Adam Shostack
Despite the fact that many of the impressive techniques in the cryptographic researchliterature have been extensively and rigorously analyzed, and some have even been commercially developed, few are...
Economic Barriers to the Deployement of Existing Privacy (2002)
Joan Feigenbaum, Michael J. Freedman, Tomas S, Adam Shostack
Internet-based commerce provides great opportunities for merchants, consumers, and business aliates, but it may seriously threaten users ' privacy. Some of the paths to loss of privacy are quite...
Economic Barriers to the Deployement of Existing Privacy (2002)
Joan Feigenbaum, Michael J. Freedman, Tomas S, Adam Shostack
Despite the fact that many of the impressive techniques in the cryptographic research literature have been extensively and rigorously analyzed, and some have even been commercially developed, few are...
Privacy Engineering for Digital Rights Management Systems (2001)
Joan Feigenbaum, Michael J. Freedman, Tomas S, Adam Shostack
Internet-based distribution of mass-market content provides great opportunities for producers, distributors, and consumers, but it may seriously threaten users’ privacy. Some of the paths to loss...
Privacy Engineering for Digital Rights Management Systems (2001)
Joan Feigenbaum, Michael J. Freedman, Tomas S, Adam Shostack
Freedom 2.1 Security Issues and Analysis (2001)
Adam Back, Ian Goldberg, Adam Shostack
adamb,ian,adam¡
Towards a Taxonomy of Network Security Assessment Techniques (1999)
Vulnerability assessment tools are coming into widespread use, but the methods that they use are not well understood. We present a taxonomy of methods for testing if a target is vulnerable to a...
The Advanced Computing Systems Association (1999)
The Following Paper, Counterpane Systems, Netect Inc, Bruce Schneier, Bruce Schneier, Adam Shostack, ...
Smart card systems di#er from conventional computer systems in that di#erent aspects of the system are not under a single trust boundary. The processor, I#O, data, programs, and network...
Breaking up is hard to do: Modeling security threats for smart cards (1999)
Bruce Schneier, Adam Shostack, Counterpane Systems Netect
Smart card systems differ from conventional computer systems in that different aspects of the system are not under a single trust boundary. The processor, I/O, data, programs, and network may be...