This study comparatively assessed the usability of passkeys versus passwords for Wi-Fi captive portal authentication, finding that while passkeys were perceived as more usable, captive portal limitati…

The paper introduces VRSafe, a novel virtual QWERTY keyboard designed to significantly mitigate keystroke inference attacks in virtual reality by introducing false positive keystrokes and incorporatin…

This paper demonstrates that visual phishing detectors can be completely bypassed by employing simple timing-based attacks that delay the rendering of key webpage elements.

This study empirically demonstrates that even highly technical students struggle significantly with the long-term usability and security understanding of Mutual TLS (mTLS) client authentication, sugge…

This paper introduces novel, faceted classification schemes to comprehensively categorize the diverse landscape of authenticator-centric authentication techniques and authenticators.

BIDO introduces a device-free, NIST AAL2-compliant biometric authentication standard that deterministically generates ephemeral ECDSA keys from live biometric measurements, eliminating the need for st…

The paper introduces Sketch-based Access Control (SBAC), a multimodal AI-assisted system that helps users iteratively refine vague access control preferences into precise, intent-aligned policies thro…

The paper introduces an LLM-driven evolutionary computation framework to automatically optimize prompts, significantly increasing the cracking rate of passwords generated by LLMs from 2.02% to 8.48%.

The paper proposes a RADIUS-based framework to maintain persistent device identity for Network Access Control (NAC) despite modern operating system MAC address randomization, ensuring regulatory compl…

The security of LLM agents is critically dependent on their system prompt configuration, which creates a brittle attack surface that can be exploited by attackers inverting the prompt's core assumptio…

MaskClaw is an edge-side privacy arbitrator that protects sensitive data in GUI agent screenshots by combining local visual evidence, task-specific policies, and a skill-evolution mechanism.

This paper analyzes various attack vectors against FIDO2 passkeys, demonstrating that while sophisticated attacks are possible, the overall security posture significantly raises the bar compared to tr…

The paper enhances the security of the PolyProtect biometric template protection method by proposing a key selection algorithm that significantly increases the difficulty of inverting protected face t…

The paper proposes and proves the security of a generic, full end-to-end credential revocation system for European Digital Identity Wallets, relying on a single server and secure channels.

The paper proposes an Android-based middleware that enables visually impaired users to securely and independently perform mobile money transactions via voice commands, significantly improving accessib…

The paper proposes HSTS-Enforced, a new web security model that flips the default connection from HTTP to HTTPS, eliminating TLS stripping attacks while allowing sites to opt out if they genuinely req…

The paper introduces a novel, scalable, and provably secure biometric authentication system designed to authenticate millions of users against cloud databases without requiring auxiliary identifiers.

SnapGuard proposes a lightweight, multimodal method to detect prompt injection attacks in screenshot-based web agents by analyzing visual stability and contrast-polarity textual signals, achieving hig…

The paper proposes WARD, a robust and efficient defense model that secures web agents against prompt injection attacks embedded in web content, achieving high recall and low false positives even again…

The paper proposes GREW, a novel Green-REd Watermarking framework that embeds ownership signals into recommender systems' intrinsic ranking process without requiring synthetic data, achieving robust p…