Having acted as programme chair for the FIRST Security and Incident response conference last year, I also got to co-edit the special conference issue of the ACM journal Digital Threats: Research and Practice (DTRAP). FIRST sponsored the journal, so our issue is open access, available for anyone to read. Topics covered:
- Using power consumption to extract encryption keys from IoT devices;
- Detecting threats in advance by looking at patterns of DNS domain name registration;
- Identifying and classifying malware independent of instruction set;
- Using time-series statistics to raise alerts from many different security-related statistics;
- Re-considering “false positives” as a potential source of valuable information.
I found it a fascinating and mind-stretching collection to read. I hope you will too.