Dear Stephen/Harsh,
Hope all is well.
Gabriele was kind enough to update the cybersecurity tasks. I’d appreciate it if you kindly review them to make sure that nothing from your side is missing.
There is however, one tasks that needs your particular attention:
T4.X White-Box Security Testing of Developed Implementations
The task was not updated by Gabriele (to the best of my knowledge) and it’s description seems to be too general. I’d appreciate it if you kindly review and update it.
Thanks and cheers, Soheil
--
Director Sustainable Computing Lab https://www.sustainablecomputing.eu https://www.sustainablecomputing.eu/ Institute for Information Systems and New Media, Vienna University of Economics and Business (WU Wien) https://nm.wu.ac.at/human https://nm.wu.ac.at/human Lecturer Department of Philosophy, University of Vienna
Hiya,
On 17/10/2021 21:48, Soheil Human wrote:
Dear Stephen/Harsh,
Hope all is well.
Gabriele was kind enough to update the cybersecurity tasks. I’d appreciate it if you kindly review them to make sure that nothing from your side is missing.
There is however, one tasks that needs your particular attention:
T4.X White-Box Security Testing of Developed Implementations
The task was not updated by Gabriele (to the best of my knowledge) and it’s description seems to be too general. I’d appreciate it if you kindly review and update it.
Sure. Can you confirm the doc URL to use?
Thanks, S.
Thanks and cheers, Soheil
--
Director Sustainable Computing Lab https://www.sustainablecomputing.eu https://www.sustainablecomputing.eu/ Institute for Information Systems and New Media, Vienna University of Economics and Business (WU Wien) https://nm.wu.ac.at/human https://nm.wu.ac.at/human Lecturer Department of Philosophy, University of Vienna
Thanks,
Boris has shared it with you. But I also sent you an individual invitation to be on the safe side.
Cheers, Soheil
--
Director Sustainable Computing Lab https://www.sustainablecomputing.eu https://www.sustainablecomputing.eu/ Institute for Information Systems and New Media, Vienna University of Economics and Business (WU Wien) https://nm.wu.ac.at/human https://nm.wu.ac.at/human Lecturer Department of Philosophy, University of Vienna
On 17.10.2021, at 22:49, Stephen Farrell stephen.farrell@cs.tcd.ie wrote:
Hiya,
On 17/10/2021 21:48, Soheil Human wrote:
Dear Stephen/Harsh, Hope all is well. Gabriele was kind enough to update the cybersecurity tasks. I’d appreciate it if you kindly review them to make sure that nothing from your side is missing. There is however, one tasks that needs your particular attention: T4.X White-Box Security Testing of Developed Implementations The task was not updated by Gabriele (to the best of my knowledge) and it’s description seems to be too general. I’d appreciate it if you kindly review and update it.
Sure. Can you confirm the doc URL to use?
Thanks, S.
Thanks and cheers, Soheil -- Director Sustainable Computing Lab https://www.sustainablecomputing.eu https://www.sustainablecomputing.eu/ Institute for Information Systems and New Media, Vienna University of Economics and Business (WU Wien) https://nm.wu.ac.at/human https://nm.wu.ac.at/human Lecturer Department of Philosophy, University of Vienna
<OpenPGP_0x5AB2FAF17B172BEA.asc>
Hiya,
On 17/10/2021 21:52, Soheil Human wrote:
Thanks,
Boris has shared it with you. But I also sent you an individual invitation to be on the safe side.
I don't have write access to that (not having a google a/c) but the text below is short enough to send this way I guess. Feel free to edit to make it better match as needed,
Cheers, S.
T4.5 White-Box Security Testing of Developed Implementations
For this task, a team of security and privacy researchers who have not been involved in and CoCoDAT implementation, but who have been involved in requirements and design discussions, will investigate whether the implementations developed meet stated security and privacy goals. It is often the case that implementation decisions unwittingly invalidate security and privacy goals, or that context or side-channel risks exist that mean a deployed implementation wlll fail to meet these goals. For example, if an Android-auto system handling consent wonderfully also requires Google Play Services be enabled, then one can question whether the user is really being offered a good decision on consent, due to the "hidden" data exfiltration inherent in the use of Google Play Services. [gaen-infocomm] The goal of this task is essentially to attempt to "break" intermediate project results from other tasks in order to allow weaknesses to be mitigated or documented as the project progresses.
[gaen-infocomm] Leith, Douglas J., and Stephen Farrell. "Contact tracing app privacy: what data is shared by europe’s gaen contact tracing apps." IEEE INFOCOM 2021-IEEE Conference on Computer Communications. IEEE, 2021.
Cheers, Soheil
--
Director Sustainable Computing Lab https://www.sustainablecomputing.eu https://www.sustainablecomputing.eu/ Institute for Information Systems and New Media, Vienna University of Economics and Business (WU Wien) https://nm.wu.ac.at/human https://nm.wu.ac.at/human Lecturer Department of Philosophy, University of Vienna
On 17.10.2021, at 22:49, Stephen Farrell stephen.farrell@cs.tcd.ie wrote:
Hiya,
On 17/10/2021 21:48, Soheil Human wrote:
Dear Stephen/Harsh, Hope all is well. Gabriele was kind enough to update the cybersecurity tasks. I’d appreciate it if you kindly review them to make sure that nothing from your side is missing. There is however, one tasks that needs your particular attention: T4.X White-Box Security Testing of Developed Implementations The task was not updated by Gabriele (to the best of my knowledge) and it’s description seems to be too general. I’d appreciate it if you kindly review and update it.
Sure. Can you confirm the doc URL to use?
Thanks, S.
Thanks and cheers, Soheil -- Director Sustainable Computing Lab https://www.sustainablecomputing.eu https://www.sustainablecomputing.eu/ Institute for Information Systems and New Media, Vienna University of Economics and Business (WU Wien) https://nm.wu.ac.at/human https://nm.wu.ac.at/human Lecturer Department of Philosophy, University of Vienna
<OpenPGP_0x5AB2FAF17B172BEA.asc>
eu-consenting_consortium@alice.wu.ac.at
-
Soheil Human -
Stephen Farrell