Locksmiths freak out over "Safecracking for the computer scientist"

A crypto researcher named Matt Blaze wrote a paper called "Safecracking for the computer scientist" that detailed the common vulnerabilities in safes in use today (Bruce Schneier called the paper "excellent").

The result, though, has been a round of incredible ire, bile and moaning from locksmiths and safe-maker, who have filled Usenet with angry recriminations with Blaze, who has committed the cardinal sin of explaining that their products don't work as advertised. — Read the rest

Group-blog on security and privacy screwups

Abuseable Tech Awareness Center is a new group blog in which prominent tech researchers will describe their ongoing projects to crack open technology and expose the security and privacy vulnerabilities in the system. The contrib list is amazing:

Steve Bellovin, AT&T Labs-Research
Matt Bishop, UC Davis
Matt Blaze, University of Pennsylvania
Dan Boneh, Stanford University
Simon Byers, AT&T Labs-Research
Bill Cheswick, Lumeta
Lorrie Cranor, AT&T Labs-Research
Ed Felten, Princeton University
Dan Geer, Independent Consultant
Tadayoshi Kohno, UC San Diego
Carl Landwehr, University of Maryland
Patrick McDaniel, AT&T Labs-Research
Gary McGraw, Cigital
Mike Reiter, Carnegie Mellon University
Avi Rubin, Johns Hopkins University
Bruce Schneier, Counterpane Internet Security
Richard M.

Read the rest