Bruce Schneier
Crypto-Gram Back Issues
| 15 Jul 2008 | CCTV cameras, kill switches and remote control, LifeLock, The First Interdisciplinary Workshop on Security and Human Behavior, Chinese hackers, Man-in-the-Middle Attacks |
|---|---|
| 15 Jun 2008 | The war on photography, crossing borders with laptops, e-mail after the Rapture, fax signatures, the war on t-shirts, airplane seat cameras, how to sell security |
| 15 May 2008 | Ten-Year Anniversary of Crypto-Gram, dual-use technologies and equities, crossing borders with laptops, risk preferences in chimpanzees and bonobos, ethics of vulnerability research |
| 15 Apr 2008 | Third Annual Movie-Plot Threat Contest, the security mindset, security as feeling and reality, web entrapment, speeding tickets and agenda, seat belts, Internet censorship |
| 15 Mar 2008 | Privacy and power, Israel implementing IFF for commercial aircraft, third parties controlling information, Amtrak passenger screening, security suites vs. best-of-breed |
| 15 Feb 2008 | Security vs. privacy, MySpace and U.S. Attorneys General, lock-in, hacking power networks, Mujahideen Secrets 2, giving driver's licenses to illegal immigrants |
| 15 Jan 2008 | Anonymity and the Netflix dataset, "Where Should Airport Security Begin?", airport security study, running an open wireless network |
| 15 Dec 2007 | How to secure your computer, defeating the shoe scanning machine at Heathrow Airport, Gitmo manual leaked, security in ten years |
| 15 Nov 2007 | The war on the unexpected, online political contributing, chemical plants, switzerland and quantum cryptography, security by letterhead, cyberwar, black market in internet crime, Dual_EC_DRBG |
| 15 Oct 2007 | Storm Worm, fraudulent Amber Alerts, UK police can now demand encryption keys, anonymity and Tor, remote-controlled toys and the TSA, staged attack on generator |
| 15 Sep 2007 | First responders, basketball referees, home users, stupidest terrorist overreaction, automobile surveillance, computer forensics case study, fast-food drive-ins |
| 15 Aug 2007 | Assurance and electronic voting machines, Harry Potter leak, avian flu and disaster planning, liquid terrorist plot details, House of Lords on computer security, conversation with Kip Hawley |
| 15 Jul 2007 | Correspondent inference theory and terrorism, ubiquity of communication, 4th amendment rights extended to e-mail, credit card gas limits, voting machines and coercion, risks of data reuse |
| 15 Jun 2007 | Rare risk and overreactions, portrait of the modern terrorist as an idiot, teaching viruses, second movie-plot threat contest winner, non-security considerations in security decisions |
| 15 May 2007 | A security market for lemons, Big Brother, citizen-counterterrorist training, REAL ID, social engineering, anti-spam doorbell, penetration testing |
| 15 Apr 2007 | Second Movie-Plot Threat Contest, U.S. terorrist database, JavaScript hijacking, government contractor injects malicious software into critical military computers |
| 15 Mar 2007 | CYA security, copycats, US terrorism arrests overstated, movie plot threat in Vancouver, private police forces, cloning RFID chips made by HID |
| 28 Feb 2007 | Special issue: the psychology of security |
| 15 Feb 2007 | In praise of security theater, REAL-ID, debating full disclosure, sending photos to 911 operators, DRM in Windows Vista, psychology of security |
| 15 Jan 2007 | Automated targeting system, auditory eavesdropping, licensing boaters, Microsoft anti-phishing, Unabomber's code, transmitters in Canadian coins |
| 15 Dec 2006 | Revoting, real-world passwords, tracking sneakers, notary fraud, separating data and device ownership, fighting fraudulent tranactions |
| 15 Nov 2006 | Election security, perceived vs. actual risk, Total Information Awareness is back, forge your own boarding pass, the death of ephemeral conversation |
| 15 Oct 2006 | Screening people with clearances, renew your passport now!, faulty data and the Arar case, on-card displays, screaming cell phones |
| 15 Sep 2006 | What the terrorists want, ways to avoid the next 9/11, educating users, what is a hacker?, USBDumper, Microsoft and FairUse4WM |
| 15 Aug 2006 | Remote-control airplane software, doping in professional sports, iPod thefts, security certifications, HSBC insecurity hype, bot networks |
| 15 Jul 2006 | Google and click fraud, Mumbai terrorist bombings, League of Women Voters supports voter-verifiable paper trails, Brennan Center and electronic voting |
| 15 Jun 2006 | The value of privacy, movie-plot threat contest winner, hacking computers Over USB, aligning interest with capability |
| 15 May 2006 | Who owns your computer?, identity-theft disclosure laws, man-in-the-middle attacks on RFID cards, Microsoft's BitLocker, the security risk of special cases |
| 15 Apr 2006 | Movie-plot threat contest, airport passenger screening, VOIP encryption, security through begging, KittenAuth, new kind of door lock, iJacking |
| 15 Mar 2006 | The future of privacy, face recognition in bars, data mining for terrorists, police department privilege escalation, database error causes unbalanced budget, port security |
| 15 Feb 2006 | Risk of losing portable devices, multi-use ID cards, Ben Franklin, Valentine's Day, security in the cloud |
| 15 Jan 2006 | Anonymity and accountability, Dutch botnet, Internet Explorer sucks, electronic shackles, Project Shamrock |
| 15 Dec 2005 | Airplane security, sky marshal shooting, Sony's DRM rootkit, truckers watching the highways, secure classical communications |
| 15 Nov 2005 | RFID passports, the living and the dead, Sony secretly installs rootkit, Taser cam, DMCA review, Zotob worm |
| 15 Oct 2005 | Phishing, closed-source breathalyzers, automatic license plate scanners, tax breaks for good security, Judge Roberts |
| 15 Sep 2005 | Movie-plot threats, Katrina, the keys to the Sydney subway, Lance Armstrong, Trusted Computing best practices |
| 15 Aug 2005 | Profiling, Cisco and ISS, stealing imaginary things, turning cell phones off in tunnels, searching bags in subways |
| 15 Jul 2005 | London transport bombings, terrorism defense, CardSystems, speeding ticket avoidance, talking to strangers |
| 15 Jun 2005 | Internet attack trends, backscatter x-ray technology, fake concert tickets, Bluetooth, anthrax hoaxes |
| 15 May 2005 | REAL ID, should terrorism be reported?, automatic speedtraps, the potential for an SSH worm, Wi-Fi minefields, combating spam |
| 15 Apr 2005 | More on two-factor authentication, identity theft, Secure Flight, papal elections |
| 15 Mar 2005 | SHA-1 broken, two-factor authentication, ChoicePoint, Unicode URL Hack, Ghostbuster |
| 15 Feb 2005 | Secure Flight, T-Mobile hack, Microsoft RC4 flaw, secret questions, authentication and expiration |
| 15 Jan 2005 | Fingerprinting students, shutting down GPS, Hollywood sign, Secure Flight, cyberwar |
| 15 Dec 2004 | Behavioral assessment profiling, Google Desktop Search, safe personal computing |
| 15 Nov 2004 | Voting machines, mail-in ballot attack, world series security, technology and counterterrorism |
| 15 Oct 2004 | New blog, keeping network outages secret, RFID passports, license plate "guns" |
| 15 Sep 2004 | Security at the Olympics, Trusted Traveler program, museum security, mobile phone spoofing, no-fly list |
| 15 Aug 2004 | BOB on board, alibi and excuse clubs, Houston airport rangers, website passwords |
| 15 Jul 2004 | Due process, x-ray machines, portable storage devices, Coca-Cola and the NSA, CLEAR Act |
| 15 Jun 2004 | Breaking Iranian Codes, Windows XP SP2, cell phone jamming, cameras in subways, Witty worm |
| 15 May 2004 | Warrants, counterterrorism in airports, bypassing the USPS, national security consumers |
| 15 Apr 2004 | National ID cards, TSA-approved locks, stealing an election, beepcard, virus wars |
| 15 Mar 2004 | Microsoft source code leak, port knocking, USPTO, Password Safe 2.0, V-ID card, risks of centralization |
| 15 Feb 2004 | Surveillance, the politicization of security, identification, economics of spam |
| 15 Jan 2004 | Color-coded terrorist threat levels, fingerprinting foreigners, almanacs, diverting aircraft |
| 15 Dec 2003 | Blaster and the August 14th blackout, quantum cryptography, computerized voting |
| 15 Nov 2003 | Airplane hackers, the 9/11 terrorists' real weapon, the trojan defense |
| 15 Oct 2003 | The future of surveillance, the Patriot Act and mission creep, risks of monoculture, identity cards |
| 15 Sep 2003 | Accidents and security incidents, Beyond Fear reactions, benevolent worms, hats in banks |
| 15 Aug 2003 | Beyond Fear, flying on someone else's plane ticket, hidden text in computer documents |
| 15 Jul 2003 | How to fight, more e-mail filtering idiocy, Password Safe, crying wolf |
| 15 Jun 2003 | Cyber-terrorism, self-destructing DVDs, attacking virtual machines, auditable tasers |
| 15 May 2003 | Encryption and wiretapping, receipts, unique e-mail addresses and spam |
| 15 Apr 2003 | Postal denial-of-service, baseball, NCIC database accuracy |
| 15 Mar 2003 | Practical Cryptography, SSL flaw, SSL patent case, woodland ants |
| 15 Feb 2003 | Locks and full disclosure, SQL Slammer, importance of authentication |
| 15 Jan 2003 | Militaries and cyber-war, cichlid fish, RMAC authentication mode |
| 15 Dec 2002 | Counterattack, Department of Homeland Security, Dan Cooper, crime |
| 15 Nov 2002 | New book, Japanese honeybees, choose your own Doghouse candidate |
| 15 Oct 2002 | National Strategy to Secure Cyberspace, more on AES cryptanalysis, one-time pads |
| 15 Sep 2002 | Word 97 vulnerability, AES news, Reveal, The Odyssey |
| 15 Aug 2002 | Palladium and the TCPA, license to hack, arming airline pilots |
| 15 Jul 2002 | Embedded control systems and security, Perrun virus |
| 15 Jun 2002 | Fixing intelligence failures, more on secrecy and security |
| 15 May 2002 | Secrecy, security, and obscurity; fun with fingerprint readers |
| 15 Apr 2002 | How to think about security, liability and security, key length |
| 15 Mar 2002 | SNMP, IETF "Responsible Disclosure" document, Bernstein's factoring paper |
| 15 Feb 2002 | Judging Microsoft, Oracle's "unbreakable" database |
| 15 Jan 2002 | Windows UPnP vulnerability, Password Safe 2.0, AGS Encryptions |
| 15 Dec 2001 | National ID cards, judges punish bad security, fun with vulnerability scanners |
| 15 Nov 2001 | Full disclosure, GOVNET, Password Safe vulnerability, Windows XP |
| 15 Oct 2001 | Cyberterrorism and cyberhooliganism, war on terrorism, SSSCA, Nimda, port 80 |
| 30 Sep 2001 | Special issue on the Sep. 11 terrorist attacks and their aftermath
Italian translation by Paolo Attivissimo |
| 15 Sep 2001 | 11 September 2001, NSA's dual counter mode, Microsoft root certificate program |
| 15 Aug 2001 | DMCA, Code Red, copyright protection, cybercrime treaty |
| 15 Jul 2001 | Phone hacking: the next generation, monitoring first |
| 15 Jun 2001 | Honeypots and Honeynet, Invicta Networks, DDOS attacks on grc.com |
| 15 May 2001 | Military history, digital copy prevention, security standards, safe personal computing |
| 15 Apr 2001 | Advantages of defense, CSI computer crime survey, fake Microsoft certificates |
| 15 Mar 2001 | The security patch treadmill, insurance, death of IDS, 802.11 security |
| 15 Feb 2001 | CPRM, an intentional backdoor, e-mail filter idiocy, air gaps, internet voting |
| 15 Jan 2001 | A cyber UL?, SafeMessage, social engineering, code signing in Windows |
| 15 Dec 2000 | Voting and technology, digital safe-deposit boxes, new bank privacy regs |
| 15 Nov 2000 | Digital signatures, SDMI hacking challenge, Microsoft hack |
| 15 Oct 2000 | Semantic attacks, cybercrime treaty, NSA on security, AES announced |
| 15 Sep 2000 | Full disclosure, Carnivore, FBI and the Olympics, Facemail, PGP vulnerability |
| 15 Aug 2000 | Secrets and Lies, "Crime in Cyberspace" convention, Authentica, Bluetooth |
| 15 Jul 2000 | Full disclosure and the CIA, presidential password, lockmaking, Unicode |
| 15 Jun 2000 | SOAP, Java and viruses, DES, Infraworks |
| 15 May 2000 | Microsoft vs. Slashdot, Cybercrime treaty, Trusted client software, ILOVEYOU |
| 15 Apr 2000 | AES conference, French banking card hack, Microsoft Active Setup, UCITA |
| 15 Mar 2000 | Kerberos and Win2K, software burglary tools, UCITA, software complexity |
| 15 Feb 2000 | Distributed denial-of-service, Chinese crypto regs, publicizing vulnerabilities |
| 15 Jan 2000 | Publicity attacks, new encryption regs, Netscape, block and stream ciphers |
| 15 Dec 1999 | Security as process, ECHELON, export regulations draft, GSM encryption |
| 15 Nov 1999 | Why computers are insecure, DVD encryption, Win CE, Elliptic Curves |
| 15 Oct 1999 | Becoming a cryptographer, export rules, AMD, PKI slogans, key length |
| 15 Sep 1999 | Open source, NSAKEY, CESA, E*Trade, factoring RSA |
| 15 Aug 1999 | Back Orifice 2000, AES news, HPUX, web-based encrypted mail |
| 15 Jul 1999 | Future of crypto-hacking, bungled SSL, reader comments |
| 15 Jun 1999 | E-mail viruses, hacking archives, international encryption policy |
| 15 May 1999 | Internationalization of cryptography, export rules, TWINKLE |
| 15 Apr 1999 | The importance of not being different, smart card threats, attacking certificates with viruses |
| 15 Mar 1999 | Security hole in IE/Outlook and Office, AES news, RSA-140 factored |
| 15 Feb 1999 | Snake oil, NSA and crypto export, WinXFiles, back doors, Intel's processor ID |
| 15 Jan 1999 | 1998 year-in-review, clueless agents, Cayley-Purser |
| 15 Dec 1998 | Cracking contests, recognizing plaintext, zip disks, Commerce Dept. committee |
| 15 Nov 1998 | Electronic commerce, micro locks, copy protection, more on steganography |
| 15 Oct 1998 | Steganography, TriStrata, Rapid Remote, memo to amateur cipher designers |
| 15 Sep 1998 | Cramer-Shoup, impossible cryptanalysis, street performer, Private Doorbell |
| 15 Aug 1998 | Hardware DES cracker, KEA, chosen protocol attack, biometrics |
| 15 Jul 1998 | Breaking RSA, declassifying Skipjack, secure audit logs, WIPO |
| 15 Jun 1998 | Side channel attacks, risks of key escrow, pseudo-random number generators |
| 15 May 1998 | AES, secret story of non-secret encryption, conditional purchase orders |
up to Crypto-Gram
Schneier.com is a personal website. Opinions expressed are not necessarily those of BT.
| Search |
| Crypto-Gram Newsletter |
|
A free monthly e-mail newsletter on security and security technology.
read more |
| Latest Book |
Beyond Fear: Thinking Sensibly About Security in an Uncertain World
read more |
| Schneier on Security |
|
A blog covering security and security technology.
read more |