You are invited to submit nominations to the 2013 PET Award.

The PET Award is presented annually to researchers who have made an outstanding contribution to the theory, design, implementation, or deployment of privacy enhancing technology. It is awarded at the annual Privacy Enhancing Technologies Symposium (PETS).

The PET Award carries a prize of 3000 USD thanks to the generous support of Microsoft. The crystal prize itself is offered by the Office of the Information and Privacy Commissioner of Ontario, Canada.

Any paper by any author written in the area of privacy enhancing technologies is eligible for nomination. However, the paper must have appeared in a refereed journal, conference, or workshop with proceedings published in the period from April 16, 2011 until March 31, 2013.

The complete Award rules including eligibility requirements can be found at http://petsymposium.org/award/rules.php.

Anyone can nominate a paper by sending an email message containing the following to award-chairs13@petsymposium.org:

• Paper title
• Author(s)
• Author(s) contact information
• Publication venue and full reference
• Link to an available online version of the paper
• A nomination statement of no more than 500 words.

Lately I’ve been savoring Kahneman’s “Thinking, Fast and Slow”. Kahneman is one of the originators of behavioral economics and a Nobel prize winner. The book is tremendously thought provoking, insanely well written, jargon-minimizing, and just comes together beautifully. It’s a book where you struggle with the ideas and their implications, rather than struggle through the prose to get to the ideas.

One of the little things that made me squee with delight was where he said:

Why call them System 1 and System 2 rather than the more descriptive “automatic system” and “effortful system”? The reason is simple: “Automatic system” takes longer to say than “System 1” and therefore takes more space in your working memory. This matters, because anything that occupies your working memory reduces your ability to think.

I am totally dropping that on the next person who uses “novel” where they mean “new”. (And yes, you can make the argument that novel means “not really new but not publishied in some peer-reviewed place, and you can take that argument, fold it until it’s all nice and sharp, and then store it as appropriate.)

• RT @hellNbak_ @adamshostack @derekcslater anything with Scott Blake has to be worth reading. #
• RT @Beaker Updated BYOD security profile/policy pushed to my iPhone this morning. String passwords on phone unlock (really?) = PiTA. #
• Bad password policies give no benefit while absorbing your people's willingness to help with security. #Fail (cc @beaker) #
• RT @moxie If LinkedIn hasn't confirmed the breach, they havent fixed it either. You can change your PW, but attackers can just get it again #
• RT @aloria Another password breach, another round of "how to create strong passwords" lectures. THEY'LL TOTALLY LISTEN THIS TIME! #adorable #
• MT @jeremiahg Instincts telling me these incidents are connected. Wondering if all 3 using the same DEV framework. << or same PR checklist? #
• I'll bet we see 10-20 announcements of password breaches hoping to be in the LinkedIn PR shadow. Reminds me a bit of Heartland/inauguration #
• RT @451wendy @securityninja That would be fantastic. We need more security card games besides Elevation of Privilege. #
• RT @MSFTnews To track or not to track? Not just a question, a choice for consumers and industry http://t.co/906dY7D4 #
• RT @philvenables More new school thinking from the Feynman archives. Listen to this while thinking of InfoSec. http://t.co/SiFpDkxT #

Powered by Twitter Tools

Cool Stuff

• RT @SPACEdotcom SPLASHDOWN! @SpaceX #Dragon Space Capsule Ends Historic Mission with Pacific Ocean Splash http://t.co/3H3J1cXz
• Cool! IE10 in Win8 Release Preview has "Do Not Track" on by default! http://t.co/HHZv8cBw #privacy #
• RT @gabrielgironda WE ENCOURAGED PEOPLE TO LEARN TO PROGRAM AND JUST LOOK AT WHAT HAPPENED http://t.co/IE9HeNt3 #
• New blog: "Washington State Frees Liquor Sales: some quick thoughts"
  http://t.co/RFC7r6dA #
• A few more photos from AusCERT: http://t.co/mlQ5J7jj #auscert #Starwars #
• RT @BlackHatEvents More selections announced for #BlackHat USA 2012 at http://t.co/JQZE6ddV including @dlitchfield & @chrisrohlf & 12 others #, speaking of fun Black Hat acceptances: https://t.co/TujHa9OX #, and also
• Pro tip: When someone reaches out about conference content, understand who makes what decisions, and who doesn't. #blackhat #

Security Tech

• RT @_nomap Ageing eyes hinder biometric scans: Research suggests that irises don't remain the same for life after all http://t.co/jyG3mhWV #
• RT @nikcub: Yahoo incl'd their cert private key inside the Axis Chrome extension.means anyone can sign ext. as yahoo http://t.co/jpn00kjl #
• RT @ryanaraine from @kimzetter's story: The malware has the ability to infect a fully patched Windows 7 computer. 0day? << Maybe social eng? #
• RT @fredsharples B&N replaces every instance of the word “kindle” in Nook edition of War & Peace. http://t.co/YcbXCEp6.
  HT @GreatDismal #
• RT @KimZetter Excellent and sane breakdown of the "Chinese backdoor in chip" story from @ErrataRob – http://t.co/QDnGZAgC #

Job opening at a friend’s startup:

• RT @rewardli Looking for a sales/business development summer intern to work in our SF office. http://t.co/3LZNvGmi cc @internmatch #

Department of what’s coming to them

• Mubarak was apparently sentenced to life in prison for "failing to stop" killings he ordered? #
• RT @0xAli Actually the verdict stated that he is "An accomplice of murder and attempts of murder", but the whole trial is just a farce. #

Powered by Twitter Tools

• Congratulations to the Egyptian people for claiming the right to vote for their President! #
• The ACLU of WA is looking for a technology & liberty director http://t.co/sUAFuDq7 #
• Things that shod not surprise me: Koalas smell like eucalyptus. #

Powered by Twitter Tools

• RT @votescannell Mother of 3 Arrested for Taking Pictures of Tourist Attraction at Airport http://t.co/Id8TKH9r // I feel safer already. #
• Freedom gropes for all @seatac! /cc @tsastatus. #
• RT @ashk4n WiFi Pineapple lets anyone with $90 to "compromise the sh*t out of anyone using WiFi in the area" http://t.co/TnR3n56k #armsrace #
• Great question for @beaker: why has innovation in sanitation exceeded innovation in security? #
• RT @DanaEpp In DC @ the security dev conference. Missing you both. Adam, I taught some people EoP at the reception tonight ;-) << cool! #
• RT @jeremiahg it really is stunning how silly infosec's historical list of "best-practices" look when contrasted with data. #
• RT @JohnLaTwC Nice job @adamshostack for your work on the Autorun update. Dropping infections by 60+% #
• RT @jeremiahg RT @adamshostack: @jeremiahg Is that clueless, or cynical that the assessments are assessing the right things? < C) Both #
• For those at AusCERT, quick pointer to additional Star Wars & Information security content: http://t.co/yfY6F9nl #

Powered by Twitter Tools

• RT @Ellen_CK It appears that putting a contest in one's internal newsletter leads to people actually reading it #SEingmycoworkers #
• RT @bfist I like my risk like I like my steak << with blue cheese sauce? #
• RT @451wendy "Q: How many of the Fortune 500 are hacked right now? A: 500." http://t.co/I090fJmp <- Lovely example of FUD << "lovely"? #
• .@451wendy @dakami @attritionorg agree with Dan, we need data; Wendy this is testable Can I have a side helping of confirmation bias? :) #
• RT @Privacymatters Just updated iOS. More T&Cs include Apple WILL make public a basic profile which I can switch off afterwards #privacyfail #
• RT @shawnmoyer Defenders: I'm the track chair for the defensive track (yes, there is one) for @BlackHatHQ. We need submissions! #
• Why does @wsdot not have any "special events" here http://t.co/f1gC6bNq when there's a Mariner's game tonight? #
• Spending time prepping my AusCERT talk. All that energy watching Star Wars for good examples, it's rough. #
• New blog: "What Kip Hawley of the TSA Doesn't Understand about Terrorism" http://t.co/IR9yQqvc #
• RT @AlecMuffett "#Cybersecurity: Demand An Evidence-Based Approach" ( http://t.co/FdyjBU6Q at Computerworld ) http://t.co/8kaIACsl #
• MT @resnikoff Eagerly awaiting president's evolution on drone strikes, surveillance, drug war, mass imprisonment, secrecy, deportation, etc #
• RT @aionescu Seriously? Flashing firmware with crap was a "revelation" & "life changing experience" for Dell & HP CEO? http://t.co/vVnEyVDE #
• .@aionescu The trouble with classified briefings is they exclude skeptics & prevent discussion. #
• We seem to be made to suffer. It's our lot in life. #
• Look sir! Droids! #
• What I really need is a droid that understands the binary language of power converters. #
• He suggests that if you remove the restraining bolt, he might be able to play back the entire message. #
• RT @normative U.S. Military Taught Officers: Use ‘Hiroshima’ Tactics for ‘Total War’ on Islam http://t.co/RtjOejEZ << Holy fuck #
• RT @geekwire Ready Indian food fans? A Vij’s offshoot is coming to ‘Amazonland’ with help from Paul Allen http://t.co/m831HujI << woot! #
• Just cast my ballot for an open-access set of candidates for the ACM. Thanks to Brighten Godfrey for data: http://t.co/6fNq9qsD #
• RT @BlackHatHQ Reminder: #BlackHat USA 2012 Call for Papers closes in 4 days on May 15. Time to deliver submissions http://t.co/2GAOdrTg #
• RT @ericlaw: @jeremiahg: So if I see ".secure" in the URL, I'm good to go right? :-P << Nah, you also have to look for the lock. #
• RT @jeremiahg a "lock," how quaint. .secure needs an ominous icon. Like a bigass vault door w/ electric razor …<< TSA's blogger bob? #
• We should start by understanding mental models, testing what people can learn, then decide how to secure it. #
• If we spend a dollar educating everyone online about a new security measure, that's $2B. Seems worth a lot of up-front design. #
• Quick blog on "Why Sharing Raw Data is Important" http://t.co/fFjpWD0Z cc @hrbrmstr #
• Where do I find the Youtube-nocookie link? Wasn't it under embed, options? #

Powered by Twitter Tools

• RT @netik You program in Rails? Check out Brakeman from our security team & make your code safer. http://t.co/nFPQ3cxx (go @presidentbeef!) #
• RT @KimZetter Equipment Maker Caught Installing Backdoor Vows to Fix After Public Pressure – http://t.co/EZfe7s27 #
• Pro tip: "Blackhat talks get lots of publicity" is not a reason *your* submission will make a great BH talk" #
• RT @mattblaze "It is a rare foray by Facebook into social engineering…" http://t.co/cIEdwHMk << Not rare at all; eg privacy, timeline. #
• . @mattblaze maybe they meant it was rare for Facebook's social engineering to be for the public good? #
• RT @jeremiahg #sansappsec panelist from ADP says the Elevation of Priviledge card game has proved remarkably engaging w/ DEVs & found bugs #
• RT @Wh1t3Rabbit Just recorded another episode of Down the Rabbithole, this one with @adamshostack on "New School Security" – what a blast. #
• RT @bccla: Cuts 2 CSIS watchdog actually close the office completely; no more oversight 4 Canada's spy agency: http://t.co/4sXu7bwA #cdnpoli #
• RT @jatiki Anyone got source for a printed version of EOP card game http://t.co/2uFyX1Jp? My printer will not do less than 108 sets #
• Added some rough costs to "Please Kickstarter Elevation of Privilege" http://t.co/2ByDWe59 #
• RT @BlackHatHQ First round of #BlackHat speaker selections has been released! http://t.co/sjs6ZFhg #
• RT @tqbf We are in year ~32 of "security managed by folks who think strategically, don't break things". How's that going for us? #
• Call me when he's done something dastardly, like painted the space needle orange, or stolen a bridge. http://t.co/VaaUgLKK (h/t @normative) #
• RT @jayjacobs We've started a new blog series called "Ask the Data", first post is on Log Analysis: http://t.co/wxQaFsYX << yay, data! #
• RT @rsingel The story behind the feds seizing a hip-hop site at RIAA behest for a year http://t.co/so3Xz0lM << Very sad abuse of power #
• New blog: "More than 90% of Americans Take Action on Privacy" http://t.co/WpM8yuiD #
• May the fourth be with you! I'm spending Star Wars Day on my AusCert talk, "This Technological Terror: Security Lessons from Lord Vader" #
• New blog: More than 90% of Americans take action on privacy http://t.co/WpM8yuiD #
• We have a hard enough time writing secure code without needing to code in back doors. http://t.co/8tXoVs73 #
• Listening to Rhythms Del Mundo cover Bohemian Rhapsody in Spanish and wondering why language classes don't use more music. #
• RT @dakami http://t.co/lhZWimT9 Everyone's been hacked. Now what? << Now we talk about it, learn from each others mistakes (cc @KimZetter) #
• RT @dakami there is evidence that we're not wired to trust evidence. << Yeah, but I don't trust it. (Sorry, couldn't resist. :) #
• RT @csoghoian Facebook ad revenue by region. The company violates American users' privacy for just $9.51/ year. Sad https://t.co/0Xxj59ts #

Powered by Twitter Tools