The paper systematically analyzes 36 existing and proposed digital payment system designs to identify recurring patterns, technical trade-offs, and implementation challenges relevant for future Centra…

This paper provides a comparative framework analyzing the distinct security and privacy risks inherent in virtual and robotic assistive systems, culminating in design recommendations for trustworthy t…

AccLock proposes a passive, zero-involvement user authentication system that uses unique biometric features from in-ear accelerometers (BCG signals) to achieve secure and unobtrusive identity verifica…

The paper introduces a novel, scalable, and provably secure biometric authentication system designed to authenticate millions of users against cloud databases without requiring auxiliary identifiers.

This paper proposes a comprehensive framework utilizing AI and machine learning to enhance cybersecurity and mitigate fraud risks in the emerging field of cardless artificial intelligence banking.

BIDO introduces a device-free, NIST AAL2-compliant biometric authentication standard that deterministically generates ephemeral ECDSA keys from live biometric measurements, eliminating the need for st…

The paper proposes an on-device framework to detect and prevent the forwarding of images that have been physically recaptured (photographed) from a mobile screen, addressing the Screen Recaptured Anal…

The paper proposes a new cryptographic bearer token design enabling fully offline e-cash withdrawals from ATMs, thereby removing the central bank as a critical dependency.

The paper introduces SuperPaymaster, an Asset-Oriented Abstraction (AOA) paymaster that eliminates the need for a centralized off-chain signer, thereby improving the decentralization and efficiency of…

The paper introduces a formal Risk-Cost Model (RCM) to provide an economically grounded and mathematically rigorous framework for adaptive authentication in high-stakes financial systems.

The paper introduces VRSafe, a novel virtual QWERTY keyboard designed to significantly mitigate keystroke inference attacks in virtual reality by introducing false positive keystrokes and incorporatin…

This study comparatively assessed the usability of passkeys versus passwords for Wi-Fi captive portal authentication, finding that while passkeys were perceived as more usable, captive portal limitati…

This paper analyzes the x402 payment protocol, revealing systemic vulnerabilities in state synchronization and signature design that allow attackers to exploit payment systems for resource leakage in…

This paper analyzes the x402 payment protocol, revealing critical synchronization and security flaws that allow attackers to exploit payment systems and force merchants to subsidize compute costs.

The paper develops a unified, cross-layer security framework for autonomous LLM agents operating in agentic commerce, identifying key attack vectors and proposing a layered defense architecture.

This paper evaluates the vulnerability of leading LLMs deployed in smart grid operations to jailbreaking attacks, finding that while some models show high susceptibility, Claude 3.5 Haiku demonstrated…

This paper analyzes various attack vectors against FIDO2 passkeys, demonstrating that while sophisticated attacks are possible, the overall security posture significantly raises the bar compared to tr…

The paper proposes a RADIUS-based framework to maintain persistent device identity for Network Access Control (NAC) despite modern operating system MAC address randomization, ensuring regulatory compl…

APEX is a research system that adapts HTTP 402-style payment gating for autonomous agents, enabling programmatic spend governance using real-world fiat payment workflows like UPI.

This paper develops a formal economic framework to assess the security of VDF-based randomness beacons, demonstrating that many proposed delays are economically insecure due to rational, profit-motiva…