research
∙
08/28/2023
Skip, Skip, Skip, Accept!!!: A Study on the Usability of Smartphone Manufacturer Provided Default Features and User Privacy
Smartphone manufacturer provided default features (e.g., default locatio...
share
research
∙
08/25/2023
ExD: Explainable Deletion
This paper focuses on a critical yet often overlooked aspect of data in ...
research
∙
07/28/2023
Towards Equitable Privacy
Ensuring equitable privacy experiences remains a challenge, especially f...
research
∙
07/05/2023
Co-creating a Transdisciplinary Map of Technology-mediated Harms, Risks and Vulnerabilities: Challenges, Ambivalences and Opportunities
The phrase "online harms" has emerged in recent years out of a growing p...
research
∙
06/21/2023
Decisions Disruptions 2: Decide Harder
Cyber incident response is critical to business continuity – we describe...
research
∙
05/01/2023
Security-Enhancing Digital Twins: Characteristics, Indicators, and Future Perspectives
The term "digital twin" (DT) has become a key theme of the cyber-physica...
research
∙
01/16/2023
Stuck in the Permissions With You: Developer End-User Perspectives on App Permissions Their Privacy Ramifications
While the literature on permissions from the end-user perspective is ric...
research
∙
01/13/2023
Threat Models over Space and Time: A Case Study of E2EE Messaging Applications
Threat modelling is foundational to secure systems engineering and shoul...
research
∙
11/28/2022
A Survey of Relevant Text Mining Technology
Recent advances in text mining and natural language processing technolog...
research
∙
11/16/2022
Privacy Engineering in the Wild: Understanding the Practitioners' Mindset, Organisational Culture, and Current Practices
Privacy engineering, as an emerging field of research and practice, comp...
research
∙
11/04/2022
Better Call Saltzer & Schroeder: A Retrospective Security Analysis of SolarWinds & Log4j
Saltzer & Schroeder's principles aim to bring security to the design of ...
research
∙
08/25/2022
Embedding Privacy Into Design Through Software Developers: Challenges Solutions
To make privacy a first-class citizen in software, we argue for equippin...
research
∙
08/04/2022
"Yeah, it does have a...Windows `98 Vibe”: Usability Study of Security Features in Programmable Logic Controllers
Programmable Logic Controllers (PLCs) drive industrial processes critica...
research
∙
08/03/2022
Contrasting global approaches for identifying and managing cybersecurity risks in supply chains
Supply chains are increasingly targeted by threat actors. Using a recent...
research
∙
03/24/2022
Automatic User Profiling in Darknet Markets: a Scalability Study
In this study, we investigate the scalability of state-of-the-art user p...
research
∙
03/16/2022
Understanding motivations and characteristics of financially-motivated cybercriminals
Background: Cyber offences, such as hacking, malware creation and distri...
research
∙
03/16/2022
How darknet market users learned to worry more and love PGP: Analysis of security advice on darknet marketplaces
Darknet marketplaces, accessible through, Tor are where users can buy il...
research
∙
02/17/2022
The Political Economy of Privacy Enhancing Technologies
PETs have increasingly become vital empowering tools in today's highly d...
research
∙
02/15/2022
Characterising Cybercriminals: A Review
This review provides an overview of current research on the known charac...
research
∙
02/03/2022
A Taxonomy for Contrasting Industrial Control Systems Asset Discovery Tools
Asset scanning and discovery is the first and foremost step for organiza...
research
∙
01/22/2022
On the Privacy of Mental Health Apps: An Empirical Investigation and its Implications for Apps Development
An increasing number of mental health services are offered through mobil...
research
∙
05/05/2021
Don't forget your classics: Systematizing 45 years of Ancestry for Security API Usability Recommendations
Producing secure software is challenging. The poor usability of security...
research
∙
04/01/2021
The best laid plans or lack thereof: Security decision-making of different stakeholder groups
Cyber security requirements are influenced by the priorities and decisio...
research
∙
02/19/2021
"Do this! Do that!, And nothing will happen" Do specifications lead to securely stored passwords?
Does the act of writing a specification (how the code should behave) for...
research
∙
09/08/2020
Technical Report: Gone in 20 Seconds – Overview of a Password Vulnerability in Siemens HMIs
Siemens produce a range of industrial human machine interface (HMI) scre...
research
∙
10/11/2019
Contextualising and Aligning Security Metrics and Business Objectives: a GQM-based Methodology
Pre-defined security metrics suffer from the problem of contextualisatio...
research
∙
05/29/2019
