My time at Google’s Chrome Security Team

During the summer of 2014 I worked at Google’s Chrome Security Team lead by Paris Tabriz. I was working on usable security issues along with Adrienne Felt, Joel Weinberger and Chris Palmer. I was mainly focusing on Mixed Content Blocking and Chrome Permissions. In mixed content, I implemented a feature in …

Read More »

[Paper] Planning and Integrating Deception into Computer Security Defenses

Mohammed H. Almeshekah and Eugene H. Spafford New Security Paradigms Workshop (NSPW’14), Victoria, BC, Canada, 15-18 September 2014 ABSTRACT: Deceptive techniques played a prominent role in many human conflicts throughout history. Digital conflicts are no different as the use of deception has found its way to computing since at least the …

Read More »

[Paper] Using Deceptive Information in Computer Security Defenses

Mohammed H. Almeshekah and Eugene H. Spafford International Journal of Cyber Warfare and Terrorism (IJCWT), 4 (3), 46-58, July-September 2014, IGI Global ABSTRACT: In this paper the authors present a novel taxonomy of methods and techniques that can be used to protect digital information. The authors discuss how information has been …

Read More »

Best Poster Award for “The Case of Using Negative (Deceiving) Information in Data Protection”

Our poster “The Case of Using Negative (Deceiving) Information in Data Protection” won the best poster award during the 15th Annual Information Security Symposium held at Purdue University. In this poster we present a novel taxonomy of methods and techniques that can be used to protect digital information grouped into four categories. …

Read More »

[Poster] The Password Wall — A Better Defense against Password Exposure

Mohammed H. Almeshekah, Mikhail J. Atallah & Eugene H. Spafford 15th Annual Information Security Symposium, CERIAS, Purdue, March, 2014 ABSTRACT: We present an authentication scheme that better protects users’ passwords than in currently deployed password-based schemes, without taxing the users’ memory or damaging the user-friendliness of the login process. Our scheme maintains …

Read More »

[Paper] The Case of Using Negative (Deceiving) Information in Data Protection

Mohammed H. Almeshekah and Eugene H. Spafford [Paper] Proceedings of the 9th International Conference on Cyber Warfare and Security ICCWS-2014, ISSN: 2048-9870, Academic Conferences and Publishing International Limited, March 2014 [Poster] 15th Annual Information Security Symposium, CERIAS, Purdue, March, 2014 (Best Poster Award)   ABSTRACT: As the convergence between our physical …

Read More »

Privacy Preserving Access Control Framework

Mohammed H. Almeshekah and Ninghui Li I worked with Prof. Li at Purdue to provide a report on privacy preserving access control framework for project lead by Dr. Waleed Alrodhan on studying the privacy practices in the Saudi Market. Below is a description on the project and the details of the report we …

Read More »

[Report] Improving Security Using Deception

Mohammed H. Almeshekah, Eugene H. Spafford and Mikhail J. Atallah The Center for Education and Research in Information Assurance and Security: Technical Report (CERIAS TR 2013-13), November 2013 ABSTRACT: As the convergence between our physical and digital worlds continues at a rapid pace, much of our information is becoming available online. …

Read More »