Citizen Lab Senior Research Fellow John Scott-Railton has published an updated version of his “Security for the High-Risk user” paper, first published in the IEEE Security & Privacy in spring 2016. The updates were made based on new evidence of attacks against two-factor and account recovery SMSes, underlining the need for innovation in two-factor authentication.
Articles in popular publications (e.g., newspaper, magazine or opinion websites) written by Citizen Lab staff.
As the United Nations General Assembly begins its milestone 70th session, international digital security is high on the agenda. One starting point for discussion is likely to be the International Code of Conduct for Information Security (the “Code”). This analysis explores how the Code has developed over time, impetus behind the changes made, and the potential impact of the Code on international human rights law and its application. It is accompanied by an interactive comparison of the 2015 and 2011 versions of the Code.
At the 2015 USENIX Free and Open Communications on the Internet (FOCI) workshop, held in Washington DC on August 10, Citizen Lab and collaborators present three papers.
The papers include: investigation of censorship and surveillance on China’s most popular social video platforms, an updated analysis of China’s Great Canon, and examination of securing cookie-based identifiers from passive surveillance.
In this article, Sarah McKune calls for the encryption and anonymity debate to address the aspects of human rights that are unique to digital space.
Citizen Lab Senior Legal Researcher Sarah McKune explores the link between the United Nations’ human rights mechanisms and cybersecurity. The post also features an interview with UN Special Rapporteur on freedom of opinion and expression David Kaye.
In an article published in the Institute for Research on Public Policy’s (IRPP) “Policy Options” blog, Research Fellow Jon Penney observed that the debate on Canada’s Bill C-51 Anti-Terror law has been “contentious and ranging, yet few commentators have drawn on experience or expert voices elsewhere to understand its implications.”
In our blog post, we describe the results of tests we conducted to measure HTTPS support on the advertisers found on a sample of news websites as well as two sample lists of advertisers. We find a large disparity between our results and the the level of security support referred to in a recent post on the Internet Advertising Bureau’s website.
Citizen Lab Director Ron Deibert authored an article entitled “Who Knows What Evils Lurk in the Shadows?” published on OpenCanada.org.
Christopher Parsons, post-doctoral fellow at the University of Toronto’s Citizen Lab and managing director of the Telecom Transparency Project, has published a draft paper analyzing the effectiveness of the ‘transparency reports’ that Canadian telecommunications companies released in 2014.
In an article published on Slate, entitled “Code Is Law,” Citizen Lab Research Fellow Jon Penney discussed how US laws, such as the Computer Fraud and Abuse Act (CFAA) and Digital Millennium Copyright Act (DMCA), are determining the ethics of computer code.