2010 Feb 27, 10:06
A web browser add-on security research paper that describes the Google Chrome security model. "We propose a new browser extension system that improves security by using least privilege, privilege
and strong isolation. Our system limits the misdeeds an attacker can perform through an extension vulnerability.
Our design has been adopted as the Google Chrome extension system."
2010 Feb 26, 2:42
Adam Barth has tons of papers on web browser security.
2010 Jan 14, 2:54
Wow: "If the report's findings are correct, it suggests that the government of China has been engaged for months in a massive campaign of industrial espionage against US companies."
2010 Jan 6, 2:17
Not shocking that papers freely available on the Internet are cited more than those not freely available... "Articles whose authors make them Open Access (OA) by self-archiving them online are cited
significantly more than articles accessible only to subscribers. ... not because of a quality bias from authors self-selecting what to make OA, but because of a quality advantage, from users
self-selecting what to use and cite, freed by OA from the constraints of selective accessibility to subscribers only."
2009 Nov 27, 6:10
"What follows is a brief description of the method we have developed for encoding arbitrary shellcode as English text. This English shellcode is completely self-contained, i.e., it does not require
an external loader, and executes as valid IA32 code."
2009 Oct 29, 10:43
"Augmented Reality for Maintenance and Repair (ARMAR) explores the use of augmented reality to aid in the execution of procedural tasks in the maintenance and repair domain." Giant goggles hooked up
to a G1 give 3D overlays over the mechanics view to point them to and help with the current task.
2009 Oct 6, 3:18 2009 Aug 25, 7:10
Research paper modelling zombie infection. "The key difference between the models presented here and other models of infectious disease is that the dead can come back to life." Also, love the
references section with "Snyder, Zack (director), 2004 Dawn of the Dead" next to things like "Bainov, D.D. & Simeonov, P.S. Impulsive Differential Equations: Asymptotic Properties of the Solutions.
World Scientific, Singapore (1995)."
2009 Aug 24, 9:52
Notes on how bin diff'ing tools work and thoughts on defeating them. "We call the threat "1-day exploits". Just few minutes after the release of patches, binary diffing technique can be used to
identify the vulnerabilities that the security patches are remedying."
2009 Aug 24, 3:11
"It turns out that flipping a coin has all sorts of non-randomness", includes link to research paper and blog post with gems like: "If the coin is tossed and caught, it has about a 51% chance of
landing on the same face it was launched"
2009 Aug 21, 3:13
"At Black Hat USA 2009 and Defcon 17 Nathan Hamiel and Shawn Moyer introduced an attack called Dynamic Cross-Site Request Forgery (CSRF). This white paper discusses the attack and discusses several
Dynamic CSRF attack vectors." Seems to require sites trying to secure CSRF scenarios using session IDs in their URLs.
2009 Aug 14, 6:20
"This paper presents efficient off-line anonymous e-cash schemes where a user can withdraw a wallet containing coins each of which she can spend unlinkably."
2009 Aug 14, 3:55
The government program PACER is an online archive of court records and even though the documents are public domain, PACER charges access to them ostensibly to pay for PACER. This plugin uses the
Internet Archive as a kind of free intermediate cache, rewriting the PACER HTML to reference the free Internet Archive versions of the documents when available and uploading PACER documents to the IA
cache when you download one it doesn't yet have.
2009 Aug 12, 8:08
"In a formal academic paper, every claim is referenced to another academic paper... This convention gives us an opportunity to study how ideas spread, and myths grow, because in theory you could
trace who references what, and how, to see an entire belief system evolve from the original data."
2009 Jul 20, 11:40
"My interactive media project this semester is about the augmentation of the classic communication medium business card... what came to my mind pretty quickly was Augmented Reality." Ever since I saw
those AR things you print out I've wished they were based completely off of QR codes that would tell the client app where to download the 3D scene to project.
2009 Jul 20, 5:04
"We had five people, over about six months, research and come up with the tens of thousands of words present on the Scribblenauts dictionary."
2009 Jul 15, 10:48
"With a little help from Bill Gates (who secured the rights using personal funds), Microsoft is presenting a series of lectures on physics by Richard Feynman." The videos have subtitles, annotations
2009 Jul 6, 2:06
"Considering the similarity of its ingredients, canned dog food could be a suitable and inexpensive substitute for pate or processed blended meat products such as Spam or liverwurst... Although 72%
of subjects ranked the dog food as the worst of the five samples in terms of taste... subjects were not better than random at correctly identifying the dog food."
2009 Apr 3, 11:40
"'SixthSense' is a wearable gestural interface that augments the physical world around us with digital information and lets us use natural hand gestures to interact with that information." The page
is a lot easier to read with styling turned off. Actually, skip the text just watch the TED video.