Twitter official blog: Protecting user identity against Silhouette

Posted on 19th September 2018 by mori

The official Twitter blog has published an article that describes the security threat, named Silhouette, and how they have addressed the issue on their service.

https://blog.twitter.com/engineering/en_us/topics/insights/2018/twitter_silhouette.html

We have published a paper that describes the threat and possible countermeasures against it. We hope the blog article will let other social web developers be aware of the threat and take appropriate actions against it. The study was conducted by Mr. Takuya Watanabe who is now working at NTT while studying at Waseda University as a PhD student. The study is a joint work with the NTT Secure Platform Laboratories, NTT corporation.

Paper: https://ieeexplore.ieee.org/document/8406608/

Preprint: https://arxiv.org/abs/1805.05085

The source of the image: Twitter official blog.

Best Student Paper Award@USENIX WOOT 2018

Posted on 13th August 2018 by mori

Our work on the Radio-Frequency Retroreflector Attack got the best student paper award of USENIX WOOT 2018! This is a joint work with Prof. Yuichi Hayashi@NAIST and Prof. Masahiro Kinugawa@NIT, Sendai.
Congratulations, Wakabayashi-kun and Maruyama-kun!

S. Wakabayashi, S. Maruyama, T. Mori, S. Goto, M. Kinugawa, and Y. Hayashi, “A Feasibility Study of Radio-frequency Retroreflector Attack,” Proceedings of the 12th USENIX Workshop on Offensive Technologies (WOOT 2018), August 2018. [PDF]

Mori-san presented a poster at SOUPS 2018

Posted on 12th August 2018 by mori

Mori-san presented our work on password analysis at the poster session of SOUPS 2018. We got a plenty of useful feedback from the audience.

K. Mori, Y. Zhou, and T. Mori, “Understanding the Propensity of Password Creation: Comparative Analysis of Three Language Spheres,” (poster presentation), Proc. of the 14th Symposium on Usable Privacy and Security (SOUPS 2018), August 2018

A journal paper got accepted.

Posted on 5th August 2018 by mori

Our paper submitted to IEICE transactions is accepted for publication. This is a joint work with NICT. Congrats, Sun-san!

Bo Sun, Akinori Fujino, Tatsuya Mori, Tao Ban, Takeshi Takahashi, and Daisuke Inoue,
“Automatically Generating Malware Analysis Reports Using Sandbox Logs,”
IEICE Transactions on Information and Systems, Vol. Exxx-D, No.x, pp.-, xxx. 2018. (in press)

特許登録

Posted on 3rd August 2018 by mori

研究プロジェクト RouteDetector の成果が特許登録となりました。本研究はNTTセキュアプラットフォーム研究所との共同研究成果であり、また科研費・挑戦的萌芽研究「人間の移動軌跡とセンサー情報の相関分析により生じる脅威の実証と対策」(15K12038)による助成を受けました。当初の狙いとしてはスマートフォンをユーザ標的としたPoC攻撃の評価対策として研究を進めましたが、得られた技術を転用することによって、GPSやWiFiによる測位ができない場所（例えば地下鉄内等）における位置情報推定技術としての活用が期待されます。

本研究プロジェクトの主な成果

渡邉卓弥，秋山満昭，森達哉，”RouteDetector: 9軸センサ情報を用いた位置情報追跡攻撃”，コンピュータセキュリティシンポジウム2015論文集，vol. 2015，No. 3，pp. 1127-1134 ，2015年10月 [概要] (PWS2015 優秀論文賞)
T. Watanabe, M. Akiyama, and T. Mori, “RouteDetector: Sensor-based Positioning System that Exploits Spatio-temporal Regularity of Human Mobility,” Proceedings of the 9th USENIX Workshop on Offensive Technologies (WOOT ’15), pp. 1-11, August 2015, Washington D.C., US. (acceptance rate: 35.1% = 20/57) [PDF][slide][bibtex][USENIX]
T. Watanabe, M. Akiyama, and T. Mori, “Tracking the Human Mobility Using Mobile Device Sensors,” IEICE Transactions on Information and Systems, Vol. E100-D, No. 8, pp. 1680–1690, Aug. 2017 [PDF]
渡邉、秋山、八木、森　特許第6367771号　位置推定装置、位置推定方法および位置推定プログラム