IEEE Security & Privacy

Article	Citations
A Taxonomy of Attacks on Federated Learning	85
Unleashing the Digital Twin's Potential for ICS Security	42
Perspectives on the SolarWinds Incident	38
Seven Ways to Evaluate the Utility of Synthetic Data	32
A Critical Overview of Privacy in Machine Learning	27
Doers, Not Watchers: Intelligent Autonomous Agents Are a Path to Cyber Resilience	23
Top Five Challenges in Software Supply Chain Security: Observations From 30 Industry and Government Organizations	21
Privacy Regulations, Smart Roads, Blockchain, and Liability Insurance: Putting Technologies to Work	18
Privacy in the Time of COVID-19: Divergent Paths for Contact Tracing and Route-Disclosure Mechanisms in South Korea	17
Understanding the Security Implications of Kubernetes Networking	17
Challenges and Opportunities in Cyberphysical Systems Security: A Physics-Based Perspective	15
Dealing With COVID-19 Network Traffic Spikes [Cybercrime and Forensics]	15
Zero Trust Architecture: Does It Help?	15
Are We Preparing Students to Build Security In? A Survey of European Cybersecurity in Higher Education Programs [Education]	14
Security and Privacy in Internet of Things-Enabled Smart Cities: Challenges and Future Directions	14
SgxPectre: Stealing Intel Secrets From SGX Enclaves via Speculative Execution	13
Machine Learning for Web Vulnerability Detection: The Case of Cross-Site Request Forgery	13
Data Privacy and Trustworthy Machine Learning	12
Different Kind of Smells: Security Smells in Infrastructure as Code Scripts	12
Verify It’s You: How Users Perceive Risk-Based Authentication	11
Time to Change the CVSS?	11
SolarWinds and the Challenges of Patching: Can We Ever Stop Dancing With the Devil?	10
Plundervolt: How a Little Bit of Undervolting Can Create a Lot of Trouble	10
How Trusted Execution Environments Fuel Research on Microarchitectural Attacks	10
Beyond Passwords—Challenges and Opportunities of Future Authentication	10

Tamarin: Verification of Large-Scale, Real-World, Cryptographic Protocols	10
Toward Cybersecurity Personalization in Smart Homes	9
Threat Modeling Tools: A Taxonomy	8
An Informative Security and Privacy “Nutrition” Label for Internet of Things Devices	8
The Ransomware Threat to Energy-Delivery Systems	8
Software Bills of Materials Are Required. Are We There Yet?	8
Cyberassured Systems Engineering at Scale	8
The Ekiden Platform for Confidentiality-Preserving, Trustworthy, and Performant Smart Contracts	8
IT Security Is From Mars, Software Security Is From Venus	8
Building Open Trusted Execution Environments	7
Secure Messaging Authentication Ceremonies Are Broken	7
Attacks on Artificial Intelligence [Last Word]	7
Challenges in Cryptography	7
The State of the Art in Integer Factoring and Breaking Public-Key Cryptography	7
Detecting Spying Drones	7
Toward a Secure Internet of Things: Directions for Research	7
Never Mind the Malware, Here’s the Stegomalware	7
Privacy for the People? Exploring Collective Action as a Mechanism to Shift Power to Consumers in End-User Privacy	6
End-to-End Security: When Do We Have It?	6
Certificate Transparency in Google Chrome: Past, Present, and Future	6
Embedding Privacy Into Design Through Software Developers: Challenges and Solutions	6
Phishing Detection Leveraging Machine Learning and Deep Learning: A Review	6
Security Midlife Crisis: Building Security in a New World	6
Best Practices Would Make Things Better in the IoT	6
Equity and Privacy: More Than Just a Tradeoff	6
Is Hardware More Secure Than Software?	6
Complex Encoded Tile Tensors: Accelerating Encrypted Analytics	6
Machine Learning for Source Code Vulnerability Detection: What Works and What Isn’t There Yet	6
Seven Pain Points of Threat Analysis and Risk Assessment in the Automotive Domain	5
Sphynx: A Deep Neural Network Design for Private Inference	5
The Advanced Encryption Standard: 20 Years Later	5
Credit Card Fraud Is a Computer Security Problem	5
The Challenges of Software Cybersecurity Certification [Building Security In]	5
Online Log Data Analysis With Efficient Machine Learning: A Review	5
Security for Shared Electric and Automated Mobility Services in Smart Cities	5
A Decade of Reoccurring Software Weaknesses	5
Privacy in a Time of COVID-19: How Concerned Are You?	5
Medical Device Forensics	5
The Quest for Data Transparency	5
Parental Controls: Safer Internet Solutions or New Pitfalls?	4
Lessons Learned on Machine Learning for Computer Security	4
Integrating Cybersecurity and Artificial Intelligence Research in Engineering and Computer Science Education	4
Dispelling Misconceptions and Characterizing the Failings of Deepfake Detection	4
Nudging Software Developers Toward Secure Code	4
Problematic Privacy Policies of Voice Assistant Applications	4
Dedicated Security Chips in the Age of Secure Enclaves	4
StopGuessing: Using Guessed Passwords to Thwart Online Password Guessing	4
Is Vulnerability Report Confidence Redundant? Pitfalls Using Temporal Risk Scores	4
Road Traffic Poisoning of Navigation Apps: Threats and Countermeasures	4
Automated Privacy Preferences for Smart Home Data Sharing Using Personal Data Stores	4

Privacy Compliance: Can Technology Come to the Rescue?	4
Whack-a-Meltdown: Microarchitectural Security Games [Systems Attacks and Defenses]	4
OpenSSF Scorecard: On the Path Toward Ecosystem-Wide Automated Security Metrics	4
Technical Leverage: Dependencies Are a Mixed Blessing	3
Electric Sheep on the Pastures of Disinformation and Targeted Phishing Campaigns: The Security Implications of ChatGPT	3
Forensic Event Analysis: From Seemingly Unrelated Data to Understanding	3
Privacy-Preserving and Sustainable Contact Tracing Using Batteryless Bluetooth Low-Energy Beacons	3
Benchmarking Flaws Undermine Security Research	3
“Free” as in Freedom to Protest?	3
End-to-End Verifiable E-Voting Trial for Polling Station Voting	3
The United Kingdom’s Cyber Security Degree Certification Program: A Cyber Security Body of Knowledge Case Study	3
A Self-Healing Mechanism for Internet of Things Devices	3
Wake Up Digital Forensics’ Community and Help Combat Ransomware	3
Security and Privacy for Edge Artificial Intelligence	3
What We Have Here Is Failure to Validate: Summer of LangSec	3
Rectification of Syntactic and Semantic Privacy Mechanisms	3
Computing on Encrypted Data	3
Being the Developers’ Friend: Our Experience Developing a High-Precision Tool for Secure Coding	3
Backdoors Against Natural Language Processing: A Review	3
Current Perspectives on Securing Critical Infrastructures’ Supply Chains	3
Toward Hardware Security Property Generation at Scale	3
A Cybersecurity Moonshot	3
Security Verification of the OpenTitan Hardware Root of Trust	3
Demystifying Android’s Scoped Storage Defense	3
Decentralized Public-Key Infrastructure With Blockchain in V2X Communications: Promising or Only Euphoria?	3
(In)secure Smart Device Use Among Senior Citizens	3
A Real-Time Cosimulation Testbed for Electric Vehicle Charging and Smart Grid Security	3
Citizens’ Cybersecurity Behavior: Some Major Challenges	3
Disinformation and Reflections From Usable Security	2
Cybersecurity During COVID-19	2
Courseware as Code: Instituting Agile Courseware Collaboration	2
A View of Security as 20 Subject Areas in Four Themes	2
Ransomware-Bitcoin Threat Intelligence Sharing Using Structured Threat Information Expression	2
Formal Methods at Scale	2
Investigative Techniques for the De-Anonymization of Hidden Services	2
Action Bias and the Two Most Dangerous Words in Cybersecurity Incident Response: An Argument for More Measured Incident Response	2
Incident Response as a Lawyers’ Service	2
Personal IoT Privacy Control at the Edge	2
Distributed Self-Sovereign-Based Access Control System	2
Opportunities and Challenges in Securing Critical Infrastructures Through Cryptography	2
One Giant Leap for Computer Security	2
Security Policy Audits: Why and How	2
Balancing Public Health and Civil Liberties: Privacy Aspects of Contact-Tracing Technologies	2
Blind Spots of Security Monitoring in Enterprise Infrastructures: A Survey	2
Are Machine Learning Models for Malware Detection Ready for Prime Time?	2
Driving Cybersecurity Policy Insights From Information on the Internet	2
Modeling Large-Scale Manipulation in Open Stock Markets	2
The Seven Golden Principles of Effective Anomaly-Based Intrusion Detection	2
With Great Complexity Comes Great Vulnerability: From Stand-Alone Fixes to Reconfigurable Security	2
Blockchains and Stealth Tactics for Teaching Security	2
Cybersecurity Advocates: Force Multipliers in Security Behavior Change	2
Challenges of Producing Software Bill of Materials for Java	2
Preserving Privacy in the Globalized Smart Home: The SIFIS-Home Project	2
The Data Protection Officer: A Ubiquitous Role That No One Really Knows	2
Practical Attacks on Machine Learning: A Case Study on Adversarial Windows Malware	2
Privacy in the Era of 5G, IoT, Big Data, and Machine Learning	2
What Will It Take?	2
Developing With Formal Methods at BedRock Systems, Inc.	2
The People Who Live in Glass Houses Are Happy the Stones Weren't Thrown at Them [From the Editors]	2
Research and Industry Partnerships in Cybersecurity and Privacy Research: New Frontiers or Fueling the Tech Sector?	1
Coevolution of Security’s Body of Knowledge and Curricula	1
Transient Execution Attacks	1
Memory Errors and Memory Safety: C as a Case Study	1
Security Issues in Situational Awareness: Adversarial Threats and Mitigation Techniques	1
What Has Artifact Evaluation Ever Done for Us?	1
Measures to Ensure Cybersecurity of Industrial Enterprises: A Legal Perspective	1
Cryptographic Standards in the Post-Quantum Era	1
IEEE Euro S&P: The Younger Sibling Across the Pond Following in Oakland's Footsteps	1
Machine Learning Security and Privacy	1
Formally Verifying Industry Cryptography	1
Authentication of Voice Commands by Leveraging Vibrations in Wearables	1
They Would Do Better If They Worked Together: Interaction Problems Between Password Managers and the Web	1
A Systems Approach Toward Addressing Anonymous Abuses: Technical and Policy Considerations	1
Memory Protection Keys: Facts, Key Extension Perspectives, and Discussions	1
Nothing Is Good Enough: Fast and Cheap Are Undervalued as Influencers of Security Tool Adoption	1
Katie Moussouris: Vulnerability Disclosure and Security Workforce Development	1
Built-In Cybersecurity: Insights Into Product Security for Cyberphysical Systems at a Large Company	1
Automating Recovery in Mixed Operation Technology/IT Critical Infrastructures	1
Distributed Financial Exchanges: Security Challenges and Design Principles	1
VAULT-Style Risk-Limiting Audits and the Inyo County Pilot	1

Journey to the Center of Software Supply Chain Attacks	1
It Lurks Within: A Look at the Unexpected Security Implications of Compliance Programs	1
A Review of the Privacy-Enhancing Technologies Software Market	1
Pseudo Ground-Truth Generators and Large-Scale Studies	1
Auto-Update Considered Harmful	1
What’s Driving Conflicts Around Differential Privacy for the U.S. Census	1
A Maturity Spectrum for Data Institutions	1
IEEE Career Center	1
IEEE Computer Society Information	1
On Bridges and Software	1
Known Vulnerabilities of Open Source Projects: Where Are the Fixes?	1
Toward Unseating the Unsafe C Programming Language	1
Usable Security and Privacy for Security and Privacy Workers	1
Trusting Trust: Humans in the Software Supply Chain Loop	1
Reflections on the Past, Perspectives on the Future [From the Editors]	1
CLARK: A Design Science Research Project for Building and Sharing High-Quality Cybersecurity Curricula	1
Preparing America's Cyber Intelligence Workforce	1
Trust Me, I’m a Liar	1
The Ethical Smart Home: Perspectives and Guidelines	1
Teaching Secure Acquisition in Higher Education	1
Addressing Cyber Threats in Biology	1
Contextual Integrity, Explained: A More Usable Privacy Definition	1
CrawlPhish: Large-Scale Analysis of Client-Side Cloaking Techniques in Phishing	1
Challenges and Opportunities for Beyond-5G Wireless Security	1
Security and Privacy Research Artifacts: Are We Making Progress?	1
Security and Privacy Issues of Home Globalization	1
Defensive Technology Use During the 2018-2019 Sudanese Revolution	1
Trusted Execution Environments for Telecoms: Strengths, Weaknesses, Opportunities, and Threats	1