All Stories

  1. “Sign in with ... Privacy ”: Timely Disclosure of Privacy Differences among Web SSO Login Options

    Article • ACM Transactions on Privacy and Security, February 2025, ACM (Association for Computing Machinery)

    Paul Van Oorschot

  2. A Survey and Analysis of TLS Interception Mechanisms and Motivations: Exploring how end-to-end TLS is made “end-to-me” for web traffic

    Article • ACM Computing Surveys, July 2023, ACM (Association for Computing Machinery)

    Paul Van Oorschot

  3. Security Best Practices: A Critical Analysis Using IoT as a Case Study

    Article • ACM Transactions on Privacy and Security, March 2023, ACM (Association for Computing Machinery)

    Christopher Bellman, Paul Van Oorschot

  4. Empirical Analysis and Privacy Implications in OAuth-based Single Sign-On Systems

    Article • November 2021, ACM (Association for Computing Machinery)

    Paul Van Oorschot

  5. CAPS: Smoothly Transitioning to a More Resilient Web PKI

    Article • December 2020, ACM (Association for Computing Machinery)

    Paul Van Oorschot

  6. Comparative Analysis and Framework Evaluating Web Single Sign-on Systems

    Article • ACM Computing Surveys, October 2020, ACM (Association for Computing Machinery)

    Paul Van Oorschot

  7. A Discussion on Security Education in Academia

    Article • October 2018, ACM (Association for Computing Machinery)

    Paul Van Oorschot, Reihaneh Safavi-Naini

  8. Pushing on string

    Article • Communications of the ACM, October 2016, ACM (Association for Computing Machinery)

    Paul Van Oorschot

  9. Heuristics for the evaluation of captchas on smartphones

    Article • July 2015, ACM (Association for Computing Machinery)

    Paul Van Oorschot

  10. Passwords and the evolution of imperfect authentication

    Article • Communications of the ACM, June 2015, ACM (Association for Computing Machinery)

    Paul Van Oorschot