On November 13, the National Science Foundation (NSF) will host it’s next Washington Area Trustworthy Computing Hour (WATCH) talk. The talk will be “The burden of authentication: What friction points reveal.” The speaker will be Dana Chisnell, from the Center for Civic Design. From the abstract: Everyone whines about dealing with passwords and authentication, but what is the real cost to individual users? In a study conducted with 23 people at the National Institute of Standards and Technology, we asked participants to tell us about every time they authenticated in a 24-hour period. From this, we learned that the friction of authentication goes beyond the specific act of authenticating, spilling over into tasks, productivity, and […]

The next WATCH Talk is scheduled for July 17 at noon EDT. Crispin Cowan will reflect on decades of defending imperfect software. Dr. Cowan works for Microsoft adding security to existing operating systems, including the recent Windows 8.1 release. He is especially interested in usable security and effective sandboxing.  Abstract:  “Perfect” (bug-free) software is impractically expensive and slow to produce, and so the vast bulk of consumer and enterprise software products are shipped when they are “good enough” but far from bug-free. As a consequence, there has been a constant struggle to keep attackers from exploiting these chronically inevitable bugs. Much of that attention has been on memory corruption attacks against […]