Contact

All Stories

  1. In Memoriam: C.A.R. Hoare

    Article • Communications of the ACM, March 2026, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  2. In Memoriam: Vicki L. Hanson

    Article • Communications of the ACM, February 2026, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford, Chief Scientist Simson Garfinkel

  3. In Memoriam: David J. Farber

    Article • Communications of the ACM, February 2026, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  4. In Memoriam: E. Allen Emerson

    Article • Communications of the ACM, November 2024, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford, Chief Scientist Simson Garfinkel

  5. In Memoriam: Niklaus Wirth

    Article • Communications of the ACM, February 2024, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  6. In Memoriam: William A. Wulf

    Article • Communications of the ACM, May 2023, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  7. In Memoriam

    Article • Communications of the ACM, December 2022, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  8. In memoriam: Juris Hartmanis 1928--2022

    Article • Communications of the ACM, September 2022, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  9. Creating a Concept Map for ICS Security – A Delphi Study

    Article • October 2021, Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  10. In Memoriam: Charles M. Geschke (1939--2021)

    Article • Communications of the ACM, June 2021, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  11. Jack Minker (1927---2021)

    Article • Communications of the ACM, June 2021, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  12. In Memoriam: Edmund M. Clarke (1945–2020)

    Article • Communications of the ACM, February 2021, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  13. In Memoriam: Ronald E. Anderson, 1941-2020

    Article • Communications of the ACM, January 2021, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford, Chief Scientist Simson Garfinkel

  14. Fran Allen

    Article • Communications of the ACM, September 2020, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  15. Editorial

    Article • Computers & Security, March 2019, Elsevier

    Professor Eugene H. Spafford

  16. The case for disappearing cyber security

    Article • Communications of the ACM, June 2018, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  17. Reactive redundancy for data destruction protection (R2D2)

    Article • Computers & Security, May 2018, Elsevier

    Professor Eugene H. Spafford

  18. A Hypergame Analysis for ErsatzPasswords

    Article • January 2018, Springer Science + Business Media

    Professor Eugene H. Spafford

  19. Ghost Patches: Fake Patches for Fake Vulnerabilities

    Article • January 2017, Springer Science + Business Media

    Professor Eugene H. Spafford

  20. Inhibiting and Detecting Offline Password Cracking Using ErsatzPasswords

    Article • ACM Transactions on Privacy and Security, December 2016, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  21. The strength of encryption

    Article • Communications of the ACM, February 2016, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  22. Cyber Security Deception

    Article • January 2016, Springer Science + Business Media

    Professor Eugene H. Spafford

  23. ErsatzPasswords

    Article • December 2015, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  24. Enhancing Passwords Security Using Deceptive Covert Communication

    Article • January 2015, Springer Science + Business Media

    Professor Eugene H. Spafford

  25. Planning and Integrating Deception into Computer Security Defenses

    Article • September 2014, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  26. An Integrated Architecture for Automatic Indication, Avoidance and Profiling of Kernel Rootkit Attacks

    Article • August 2014, Defense Technical Information Center (DTIC)

    Professor Eugene H. Spafford

  27. Using Deceptive Information in Computer Security Defenses

    Article • International Journal of Cyber Warfare and Terrorism, July 2014, IGI Global

    Professor Eugene H. Spafford

  28. Editorial

    Article • Computers & Security, June 2014, Elsevier

    Professor Eugene H. Spafford

  29. Improved kernel security through memory layout randomization

    Article • December 2013, Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  30. Editorial

    Article • Computers & Security, May 2013, Elsevier

    Professor Eugene H. Spafford

  31. Incentive Alignment and Risk Perception: An Information Security Application

    Article • IEEE Transactions on Engineering Management, May 2013, Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  32. Risks and uncertainties in virtual worlds: an educators’ perspective

    Article • Journal of Computing in Higher Education, March 2013, Springer Science + Business Media

    Aman Yadav, Professor Eugene H. Spafford

  33. Editorial

    Article • Computers & Security, February 2013, Elsevier

    Professor Eugene H. Spafford

  34. Back Channels Can Be Useful! – Layering Authentication Channels to Provide Covert Communication

    Article • January 2013, Springer Science + Business Media

    Professor Eugene H. Spafford

  35. Cybercrime and Cloud Forensics

    Article • January 2013, IGI Global

    Professor Eugene H. Spafford

  36. Editorial

    Article • Computers & Security, September 2012, Elsevier

    Professor Eugene H. Spafford

  37. Reverse-safe authentication protocol for secure USB memories

    Article • Security and Communication Networks, July 2012, Wiley

    Professor Eugene H. Spafford

  38. Editorial

    Article • Computers & Security, July 2012, Elsevier

    Professor Eugene H. Spafford

  39. USACM and U.S. legislation

    Article • Communications of the ACM, June 2012, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  40. Editorial

    Article • Computers & Security, March 2012, Elsevier

    Professor Eugene H. Spafford

  41. Editorial

    Article • Computers & Security, February 2012, Elsevier

    Professor Eugene H. Spafford

  42. Editorial for 30/8

    Article • Computers & Security, November 2011, Elsevier

    Professor Eugene H. Spafford

  43. Editorial

    Article • Computers & Security, September 2011, Elsevier

    Professor Eugene H. Spafford

  44. Implicit Buffer Overflow Protection Using Memory Segregation

    Article • August 2011, Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  45. Editorial

    Article • Computers & Security, January 2011, Elsevier

    Professor Eugene H. Spafford

  46. Security, technology, publishing, and ethics (part II)

    Article • Computers & Security, January 2011, Elsevier

    Professor Eugene H. Spafford

  47. Security, technology, publishing, and ethics (Part I)

    Article • Computers & Security, November 2010, Elsevier

    Professor Eugene H. Spafford

  48. Editorial

    Article • Computers & Security, October 2010, Elsevier

    Professor Eugene H. Spafford

  49. Editorial

    Article • Computers & Security, September 2010, Elsevier

    Professor Eugene H. Spafford

  50. Understanding insiders: An analysis of risk-taking behavior

    Article • Information Systems Frontiers, August 2010, Springer Science + Business Media

    Professor Eugene H. Spafford

  51. Remembrances of things pest

    Article • Communications of the ACM, August 2010, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  52. Audlib: a configurable, high-fidelity application audit mechanism

    Article • Software Practice and Experience, July 2010, Wiley

    Professor Eugene H. Spafford

  53. Privacy and securityAnswering the wrong questions is no answer

    Article • Communications of the ACM, June 2009, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  54. USACM's policy role

    Article • Communications of the ACM, February 2009, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  55. A distributed requirements management framework for legal compliance and accountability

    Article • Computers & Security, February 2009, Elsevier

    Professor Eugene H. Spafford

  56. Assured Information Sharing Life Cycle

    Article • January 2009, Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford, TIm Finin

  57. Cyber Security: Assessing Our Vulnerabilities and Developing an Effective Defense

    Article • January 2009, Springer Science + Business Media

    Professor Eugene H. Spafford

  58. Tracing Worm Break-In and Contaminations via Process Coloring: A Provenance-Preserving Approach

    Article • IEEE Transactions on Parallel and Distributed Systems, July 2008, Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  59. Inspiration and trust

    Article • Communications of the ACM, January 2008, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  60. Intrusion Response Systems: A Survey

    Article • January 2008, Elsevier

    Professor Eugene H. Spafford

  61. Run-time label propagation for forensic audit data

    Article • Computers & Security, December 2007, Elsevier

    Professor Eugene H. Spafford

  62. COMPUTER SCIENCE: Happy Birthday, Dear Viruses

    Article • Science, July 2007, American Association for the Advancement of Science

    Professor Eugene H. Spafford

  63. Automated adaptive intrusion containment in systems of interacting services

    Article • Computer Networks, April 2007, Elsevier

    Professor Eugene H. Spafford

  64. CuPIDS: An exploration of highly focused, co-processor-based information system protection

    Article • Computer Networks, April 2007, Elsevier

    Professor Eugene H. Spafford

  65. Categories of digital investigation analysis techniques based on the computer history model

    Article • Digital Investigation, September 2006, Elsevier

    Professor Eugene H. Spafford

  66. On the role of file system metadata in digital forensics

    Article • Digital Investigation, December 2004, Elsevier

    Professor Eugene H. Spafford

  67. What *is* information security?

    Article • ACM SIGCSE Bulletin, March 2004, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  68. Grand challenges in information security: process and output

    Article • IEEE Security & Privacy, January 2004, Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  69. Information security and the media

    Article • Computers & Security, December 2003, Elsevier

    Professor Eugene H. Spafford

  70. PFIRES

    Article • Communications of the ACM, July 2003, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  71. Risks of total surveillance

    Article • Communications of the ACM, March 2003, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  72. Taking a stand on hackers

    Article • Computers & Security, October 2002, Elsevier

    Professor Eugene H. Spafford

  73. Secure outsourcing of scientific computations

    Article • January 2002, Elsevier

    Professor Eugene H. Spafford

  74. Digital government security infrastructure design challenges

    Article • Computer, March 2001, Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  75. Security models for web-based applications

    Article • Communications of the ACM, February 2001, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  76. Intrusion detection using autonomous agents

    Article • Computer Networks, October 2000, Elsevier

    Professor Eugene H. Spafford

  77. Low-threat security patches and tools

    Article • January 1997, Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  78. An execution-backtracking approach to debugging

    Article • IEEE Software, May 1991, Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  79. Crisis and aftermath

    Article • Communications of the ACM, June 1989, ACM (Association for Computing Machinery)

    Professor Eugene H. Spafford

  80. Understanding Risk and Risk-Taking Behavior in Virtual Worlds

    Article • IGI Global

    Professor Eugene H. Spafford

  81. Provenance-Aware Tracing ofWorm Break-in and Contaminations: A Process Coloring Approach

    Article • Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  82. CuPIDS enhances StUPIDS: exploring a co-processing paradigm shift in information system security

    Article • Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford

  83. Efficient Intrusion Detection using Automaton Inlining

    Article • Institute of Electrical & Electronics Engineers (IEEE)

    Professor Eugene H. Spafford