Sid's Face

Sid Stamm

stamm (at) rose-hulman (dot) edu
blog | cv | pgp key
B.S.* CS RHIT M.S. / Ph.D. CS IU
BA18 5738 5739 938C 7552 FC46 C608 CA5B E692 209A

 

Research

I work on socio-technical security and privacy: how technology acts as an amplifier to make security and privacy more difficult and interesting. My interests are both in exploiting Internet technologies and also fixing them. I've worked on things like Do Not Track, Anti-Phishing measures, junk email, and web application security. My current focus is trying to figure out how to match up consumer expectation with behaviors of the online marketplace.

Publications

paper"Desired Qualifications Sought in Entry Level Software Engineers.", Sid Stamm. 2023. In Proceedings of the 54th ACM Technical Symposium on Computing Science Education V. 1 (SIGCSE 2023), March 15-18, 2023, Toronto, ON, Canada. ACM, New York, NY, USA, 7 pages.
paper"Understanding How People Weigh the Costs and Benefits of Using Facebook", Jack McClary and Sid Stamm. 2020. In Proceedings of the 7th International Conference on Information Systems Security and Privacy. Online, Streaming; 11-13 February, 2021. SCITEPRESS
paper"The impact of changing homework frequency in a computer architecture course", Micah Taylor, Sid Stamm, and Christine Taylor. 2018. Journal of Computing Sciences in Colleges.34, 1 (October 2018), 60-70.
paper"Injecting CSP for Fun and Security", Christoph Kerschbaumer, Sid Stamm, and Stefan Brunthaler. 2nd International Conference on Information Systems Security and Privacy (ICISSP)' February 2016. Rome, Italy.
paper"Contextual identity: Freedom to be all your selves", Monica Chew and Sid Stamm. Proceedings of the Workshop on Web 2.0 Security and Privacy, 2013

... more ...

Select Invited Talks

slides
Cross-Site Scripting (XSS): It's still a problem even though we have solutions
What is Cross-Site Scripting? Why does it exist? Why is it still a problem? This talk explains this class of security problems in the web and explores a technology called Content Security Policy that can help prevent these problems. But it's not a panacea, and this talk also explores why CSP is not sufficient.
slides
Staying Safe on the Web: Yesterday, Today and Tomorrow
This talk recounts some stories of security problems in Mozilla's past and examines the current state of security and privacy in Firefox. It also describes the future of the Web browser, covering Mozilla's plans for upcoming releases and examining some questions in Web security and privacy that don't yet have answers.
slides
Browser (Firefox) Security
The browser as a protector: securing your private data, web sites, your platform and third party features. This talk discusses what we do in Firefox to help ensure users' security, and some efforts we're making at Mozilla to add to the security and privacy of the web.
abstractslides
Phishing and Pharming (and the Future)
21 May 2008 -- AusCERT 2008
The state of the art in Phishing and Pharming (online identity fraud), why current countermeasures fail, the human factor, and the future of phishing and pharming.
abstractslidesvideo
Drive-By Pharming and other WebSec Bummers
Web Application abuses, especially to compromise routers and screw with DNS.
abstractslidesvideo
Invasive Browser Sniffing and Countermeasures
Discussion of my recent phishing work.
abstractslides
Visualizing Secure Protocols
April 2005 -- ACM Computer Security/Privacy Lecture Series at University of Minnesota
Private polling using playing cards and other secure protocol visualizations.
slides
What's new in Java 1.5
Fall 2004 -- JETT 04 at Indiana University.
How do new developments in Java 1.5 affect Advanced Placement CS Curriculum?
The Fine Art of Rememorable Teaching
Fall 2003 -- JETT 03 at Indiana University.
How do you keep students interested? Based on my Mixed Nuts paper.


stamm (at) rose-hulman (dot) edu