Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Welcome & Introductory Remarks - IEEE 2014 Web 2.0 Security & Privacy Workshop


Published on

The IEEE 2014 Web 2.0 Security & Privacy Workshop is a one-day workshop that brings together researchers, practitioners, web programmers, policy makers, and others interested in the latest understanding and advances in the security and privacy of the web, browsers, cloud, mobile and their eco-system.

Published in: Technology, News & Politics
  • Login to see the comments

  • Be the first to like this

Welcome & Introductory Remarks - IEEE 2014 Web 2.0 Security & Privacy Workshop

  1. 1. The 2014 IEEE Workshop on Web 2.0 Security and Privacy May 18th, 2014
  2. 2. • Statistics • Post-Workshop Impact • Best Paper Announcement • KeyNote Introduction
  3. 3. Workshop Statistics
  4. 4. Authors Belgium 5% China 4% Germany 8% India 4% Ireland 1% Israel 9% Mexico 1% Pakistan 2% Saudi Arabia 1% Singapore 4% United Kingdom 3% United States 58%
  5. 5. Submissions Austria 3% Belgium 3% China 3% Germany 8% India 6% Ireland 3% Israel 6%Mexico 3% Pakistan 3% Saudi Arabia 3% Singapore 3% United Kingdom 3% United States 53%
  6. 6. Program Committee Brazil 3% Germany 5% India 3% Italy 8% Jamaica 5% Morocco 3%Poland 3% Russian Federation 3% United Kingdom 3% United States 64%
  7. 7. Program Committee Female 34% Male 66%
  8. 8. Accepted Papers Germany 20% Israel 10% Singapore 10% United States 60%
  9. 9. General Statistics Accepted 29% Rejected 71%
  10. 10. Impact
  11. 11. Post-Workshop Publication Venues IEEE Internet Computing 18% IEEE Software 12% IEEE IT Professional 26% No Venue 44%
  12. 12. Best Paper
  13. 13. I Know Where You’ve Been: Geo-Inference Attacks via the Browser Cache Many websites customize their services according to different geo- locations of users, to provide more relevant content and better responsiveness, including Google, Craigslist, etc. Recently, mobile devices further allow web applications to directly read users’ geo-location information from GPS sensors. However, if such websites leave location- sensitive content in the browser cache, other sites can sniff users’ geo- locations by utilizing timing side-channels. In this paper, we demonstrate that such geo-location leakage channels are widely open in popular web applications today, including 62% of Alexa Top 100 websites. With geo- inference attacks that measure the timing of browser cache queries, we can locate users’ countries, cities and neighborhoods in our case studies. We also discuss whether existing defenses can effectively prevent such attacks and additional support required for a better defense deployment. Yaoqi Jia, Xinshu Dong, Zhenkai Liang, Prateek Saxena.
  14. 14. Keynote Michelle Finneran Dennedy Vice President & Chief Privacy Officer, McAfee
  15. 15. Michelle currently serves as Chief Privacy Officer to McAfee, an Intel Company. She is responsible to creating a privacy practice that is focused on quality and excellence in McAfee’s policies, products, procedures and governance efforts. Her team is a staunch supporter of McAfee’s outreach efforts to educate and protect children, families and communities in the Digital Age. Before coming to McAfee, Michelle founded The iDennedy Project, a consulting and advisory company specializing in privacy and security sensitive organizations. Michelle is also a founder and editor in chief of a new media site——that was started as an advocacy and education site, currently focused on the growing crime of Child ID theft. Michelle was the Vice President for Security & Privacy Solutions for the Oracle Corporation. Her team worked closely with customers to enable them to proceed with the confidence that information is protected and accelerated as an asset. Before the Oracle acquisition of Sun, Michelle was Chief Data Governance Officer within the Cloud Computing division at Sun Microsystems, Inc. Michelle worked closely with Sun's business, technical and legal teams to create to the best data governance policies and processes possible for cloud computing to build trust for cloud environments through vendor transparency. Michelle also served as Sun’s Chief Privacy Officer where she was responsible for the development and implementation of Sun's data privacy policies and practices, working across Sun's business groups to drive the company's continued data privacy excellence. Michelle has a JD from Fordham University School of Law and a BS degree with university honors from The Ohio State University. In 2009, she was awarded the Goodwin Procter-IAPP Vanguard award for lifetime achievement and the EWF – CSO Magazine Woman of Influence award for work in the privacy and security fields. In 2012, she was honored by the National Diversity Council as one of California’s Most Powerful and Influential Women. Michelle is a Coauthor, The Privacy Engineer's Manifesto: Getting from Policy to Code to QA to Value, 2014, Apress Media."