EnGIS Technologies, Inc. a leading supplier of automotive software solutions, announced on February 8, 2021, that it has joined the Uptane project under the umbrella of the Joint Development Foundation of the Linux Foundation. The Seoul, South Korea-based company makes this step as it begins work on integrating the Uptane framework into its EnAIR Over-The-Air (OTA) software...
Category: CCS News
Post
Solar Winds attack confirms fears of cyber professionals about nation-state threats
The recent SolarWinds attack that released sensitive data from multiple Federal and local government entities confirmed the worst long-held fear of cybersecurity experts: that organized hacks supported by the resources of nation states were no longer the stuff of dystopian science fiction. This change in attitude was confirmed by a 5% rise in nation-state hacking...
Post
NYU Tandon Cyber Fellows gain a valuable new training partner
RangeForce, a cloud-based cyber range that provides hands-on training in cybersecurity, announced in early January 2021 that it was partnering with the Cyber Fellows program at the New York University Tandon School of Engineering. By providing access to the company’s RangeForce Interactive CyberSkills Training Platform, the students will be able to use more than 400...
Post
Gupta provides insights on 3-D printing vulnerabilities
A recent article in Science Line about an online workshop called “Live Breaking into Encrypted 3D Printer,” features a quote from Dr. Nikhil Gupta, a professor in the Department of Mechanical and Aerospace Engineering at NYU Tandon School of Engineering. Gupta, who has published several papers and last year lead a series of workshops at...
Post
Uptane releases V.1.1.0 of its Standard: Clarifying protection strategies for vulnerable vehicles
There is little doubt that cars have caught the attention of hackers, and little hope that these trends will be reversed. In 2016, Uptane, an open-source software security project, designed with direct input from automotive manufacturers and suppliers, was introduced to address this threat. In a nutshell, Uptane implementations secure automotive systems by establishing a...
Post
Supply chain security framework in-toto hits a milestone; releases v.1.0.0
Releasing V.1.0.0 of a software project marks a significant milestone in its development. It’s an indication that it has reached a level of maturity where its developers can ensure its quality, and guarantee its security to potential adopters. On November 23, in-toto, a software framework developed at NYU Tandon in collaboration with researchers at New...
Post
Karri, Gupta Assess Status Quo of Cybersecurity in Digital Manufacturing
As digital manufacturing continues to grow in popularity, it also becomes a more visible attack surface for hackers. Recently a team of researchers from NYU Tandon School of Engineering and Texas A&M teamed up to survey the cybersecurity risks in the emerging DM context, assess the impact on manufacturing, and identify approaches to better secure...
Post
Karri, Maniatakos Paper Selected for ICCAD “Top Picks” Session
A 2015 paper based on research conducted by NYU CCS faculty in Brooklyn and Abu Dhabi was selected for inclusion in the 2020 “Top Picks in Hardware and Embedded Security” session at the International Conference on Computer Aided Design, held November 2-5. “ConFirm: Detecting Firmware Modifications in Embedded Systems using Hardware Performance Counters” is based...
Post
“Signing Ceremony” Marks Start of TUF/PyPI Deployment via PEP 458
On October 30 at 11:15 AM, the Python Software Foundation live-streamed a special ceremony that marked the first practical steps in deploying The Update Framework (TUF) to The Python Package Index (PyPI). With this ceremony, a key was generated that bootstraps the TUF secure software update technology—a Linux Foundation project overseen by NYU Tandon Associate Professor Justin Cappos—to...
Post
CPS & IoT Workshop Chaired by NYU Abu Dhabi Professor Streams November 9
The Joint Workshop on Cyber-Physical Systems Security and Privacy & IoT Security (CPSIoTSec’20) will stream on November 9, from 10:00 to 5:30 p.m. The workshop, which is part of the ACM Conference on Computer and Communications Security 2020, will feature presentations in three sessions, including one devoted to case studies and demonstrations. The program is...