Publication of a book on Usable Privacy by Simone Fischer-Hübner and Farzaneh Karegar

Simone Fischer-Hübner and Farzaneh Karegar published their book titled "The Curious Case of Usable Privacy, Challenges, Solutions, and Prospects" at Springer. This book journeys through the labyrinth of usable privacy, a place where the interplay of privacy and Human-Computer Interaction (HCI) reveals a myriad of challenges, solutions, and new possibilities. Establishing a solid understanding of usable privacy research, practices, and challenges, the book illuminates for readers the often shadowy corridors of such a multifaceted domain and offers guidelines and solutions to successfully traverse the challenging maze.

Source: Springer

Lecture on Next-Generation Web Application Scanning

Andrei Sabelfeld gave a CASA Distinguished Lecture on Next-Generation Web Application Scanning.

Source: Ruhr-Universität Bochum's Website

How do we keep safe from cyber attacks?

Interview with Andrei Sabelfeld about threats online and how to to think about cyber security. Link to the YouTube video.

Source: Chalmers' CSE department

2nd Best Presentation at IWPE 2023

Victor Morel won a Linddun Go card deck to assess privacy risks for the 2nd best presentation at IWPE 2023.

Meet the WASP Postdocs - Victor Morel

Victor Morel’s fascination of privacy and data protection began during an Erasmus year at Uppsala University in Sweden. After completing his PhD in France in Protecting Privacy, he had the opportunity to return to Sweden for a Postdoc within the WASP NEST CyberSecIT at Chalmers University of Technology. Victor collaborates with Simone Fischer-Hübner, Professor in Privacy Security at Karlstad University, Visiting Professor at Chalmers, and part of WASP Faculty. YouTube video

Source: WASP Sweden & YouTube

PhD course on Security and Privacy of IoT Apps at the ARCADIAN-IoT Summer School

Andrei Sabelfeld gave a PhD course on Security and Privacy of IoT Apps at the ARCADIAN-IoT Summer School.

Source: ARCADIAN-IoT's website

The Shifting Privacy Left Podcast - "Automated Privacy Decisions: Usability vs. Lawfulness" with Simone Fischer-Hübner & Victor Morel

Today, Debra welcomes Victor Morel, PhD and Simone Fischer-Hübner, PhD to discuss their recent paper, "Automating Privacy Decisions – where to draw the line?" and their proposed classification scheme. We dive into the complexity of automating privacy decisions and emphasize the importance of maintaining both compliance and usability (e.g., via user control and informed consent).

Source: The Shifting Privacy Left Podcast

Seminar: Navigating the Cybersecurity Landscape

Chalmers ICT Area of Advance invites you to a full-day seminar of the subject Cyber Security. Several speakers are part of the CyberSecIT project, including Simone Fischer-Hübner, and Tamara Rezk (WASP guest professor) who will give one of the keynote.

Source: Chalmers' news

Cristiana Santos and Victor Morel: The problem with CMPs and TCF-based cookie paywalls

Cristiana and Victor have co-authored a recent paper titled “Legitimate Interest is the New Consent – Large-Scale Measurement and Legal Compliance of IAB Europe TCF Paywalls”. With them we are directing our attention to consent walls in the context of publishers and the open market, having already dedicated two recent interviews to the “consent or pay” model as it concerns Instagram and Facebook (ie. Meta). We will also try to understand the challenges and potential conflicts of interest faced by CMP (Consent Management Platform) vendors.

Source: Masters of Privacy podcast

Keynote at CPSIoTSec@CCS: IoT and Web, Friend or Foe? Security and Privacy of Internet of Things Apps

Musard Balliu gave a keynote at the CPSIoTSec workshop last November in Copenhagen. CPSIoTSec is a leading workshop on security and privacy of cyber-physical systems and IoT, held in connection to ACM CCS, a flagship conference for computer security and privacy.

Source: ACM

Slack’s and Teams’ Lax App Security Raises Alarms

Collaboration apps like Slack and Microsoft Teams have become the connective tissue of the modern workplace, tying together users with everything from messaging to scheduling to video conference tools. But as Slack and Teams become full-blown, app-enabled operating systems of corporate productivity, one group of researchers has pointed to serious risks in what they expose to third-party programs—at the same time as they're trusted with more organizations' sensitive data than ever before.

Source: Wired

Robust Security and Privacy for the Internet of Things

The goal of the NEST project CyberSecIT is a secure and well-functioning IoT that poses no threat to users’ personal privacy. “We have collected the most prominent experts in this field in Sweden and I’m convinced that we can make a difference,” says Andrei Sabelfeld, who is leading the initiative.

Source: WASP-Sweden

Your Consent is Worth 75 Euros a Year

Podcast with Victor where he explains his research on cookie paywalls and how it is being used on the web. This podcast also covers Transparency and Consent Framework (TCF) and the efforts of Belgium Data Protection Agency and similar agencies to audit websites.

Source: Data Skeptic

Cybersäkerhetsexperten om Coop-attacken: ”Är väldigt allvarligt”

Att Coop Värmlands medlemmars uppgifter har läckt ut på nätet och finns på Darknet är allvarligt, säger cybersäkerhetsexperten Andrei Sabelfeld som är professor vid Chalmers tekniska högskola i Göteborg.

Source: SVT

Din arbetsgivare kan övervaka allt du gör digitalt, det kan du utgå ifrån, menar Andrei Sabelfeld vid Chalmers högskola.

Utgå ifrån att allt du gör på din arbetsdator eller telefon kan övervakas av din arbetsgivare. Det säger Andrei Sabelfeld som är professor vid avdelningen för informationssäkerhet på Chalmers tekniska högskola.

Source: Akavia Aspekt

Seminarium: Navigera genom cybersäkerhetens landskap

Chalmers styrkeområde Informations- och kommunikationsteknik bjuder in till ett heldagsseminarium på ämnet cybersäkerhet.

Source: Chalmers's news

IT-experten: Därför är Vklass-läckan i Göteborg allvarlig

Tiotusentals elevers personuppgifter har läckt från Göteborgs stads lärplattform Vklass. Uppgifterna lades ut till försäljning i en annons på internet. Ett allvarligt problem, menar cybersäkerhetsexperten Andrei Sabelfeld som tagit del av annonsen.

Source: SVT

Elevernas uppgifter läckte i augusti – upptäcktes i oktober

Personuppgifter från 47 000 elever i Göteborg läckte från plattformen Vklass i augusti. Det upptäcktes först i oktober, nästan två månader senare.

Source: GP

Digitalisering som möjliggörare för hållbar utveckling

Hur skapar vi en hållbar omställning i samhället? Var med när ledande forskare från KTH diskuterar digitaliseringens möjligheter och risker.

Source: Internetstiftelsen

Project Leader and PI

CO-PI

CO-PI

CO-PI