Building Trust Improving Technical Security Technology

NDSS 2019 Honors Timeless Papers

The papers and presentations are done, the awards and appreciation certificates have been handed out, and the boxes are packed and labeled for shipping. NDSS 2019 has come to a successful close. It was a record setting event with over 550 registrations, 89 papers, 36 posters, and four workshops. It was inspiring to see such energetic and passionate security research professionals gathered together in one place discussing their work. All of the highlights can be found at the NDSS 2019 website, including the Distinguished Paper and Distinguished Poster Awards for this year and the full program. It is worthwhile, however, to highlight a new award series initiated this year.

NDSS Test of Time Awards

This year, to kick off the second 25 years of NDSS, an NDSS Test of Time annual award was created. This award is for papers that were published more than ten years ago and have had a significant impact on both academia and industry in the years since. There were three awardees in the inaugural class.

The first Test of Time award is from 1996: SKEME: A Versatile Secure Key Exchange Mechanism for Internet by Hugo Krawczyk. SKEME was an integral component of early versions of the Internet Key Exchange (IKE) protocol used with Internet Protocol Security (IPsec) and is the basis for many of the cryptographic design choices in the current IKEv2 Internet Standard. IPsec and IKE are the de facto Internet standards for protection of Internet Protocol (IP) communications, including Virtual Private Networks (VPNs), and are widely deployed in numerous commercial products.

The second award is Client Puzzles: A Cryptographic Countermeasure Against Connection Depletion Attacks by Ari Juels and John Brainard, published at NDSS 1999. The paper introduced the use of “client puzzles” to protect against connection depletion attacks (a form of denial of service) in connection-oriented protocols, such as TCP Syn flooding. The paper led to a number of other efforts to develop different forms of client puzzles and to apply them to various other protocols and systems.

The final NDSS Test of Time award is A Virtual Machine Introspection Based Architecture for Intrusion Detection by Tal Garfinkel and Mendel Rosenblum, published in 2003. This paper introduced the use of VMI for cybersecurity and opened the floodgates on a tremendous amount of research and derivative tools that took VM technology beyond simple resource multiplexing and leveraged it for intrusion detection, intrusion prevention, forensics, isolation, and other cybersecurity protections. The paper is the most highly cited NDSS paper (1751 citations) from the period 1995-2009.

Building Trust Improving Technical Security Technology

NDSS 2019 Highlights the Best in Security Research

Tomorrow, the 26th consecutive Network and Distributed System Security Symposium (NDSS) is set to kick off in San Diego, CA. NDSS is a premier academic research conference addressing a wide range of topics associated with improving network and system security. A key focus of the Internet Society has long been improving trust in the global open Internet and all of its connected devices and systems. In today’s world, we need new and innovative ideas and research on the security and privacy of our connected devices and the Internet that connects them together.

NDSS 2019 (24-27 February) will be the biggest NDSS symposium yet, featuring 89 peer-reviewed papers, 35 posters, 4 workshops, and a keynote. Record registration numbers are a key indicator that NDSS 2019 is featuring vital and timely topics. Below are some of the highlights expected in the coming week.


This year’s program officially starts with four workshops on Sunday, 24 February. NDSS workshops are organized around a single topic and provide an opportunity for greater dialogue amongst researchers and practitioners in the area. Each of this year’s workshops have dynamic agendas.

The Workshop on Binary Analysis Research (BAR) is returning for its second year at NDSS after a very successful inaugural year in 2018. Binary analysis refers to the process where humans and automated systems examine underlying code in software to discover, exploit, and defend against vulnerabilities. With the enormous and ever-increasing amount of software in the word today, formalized and automated methods of analysis are vital to improving security. This workshop will include a keynote, a number of peer-reviewed papers, an invited speaker, and a panel discussion. It will also emphasize the importance of releasing and sharing artifacts that can be used to reproduce results in papers and can be used as a basis for further research and development.

The Workshop on Decentralized IoT Systems and Security (DISS) is in its second year, following a very successful inaugural year in 2018. The seemingly endless potential of the Internet of Things (IoT) is somewhat tempered by the concern over the ever-increasing risk that these devices pose to the Internet. The ultimate success of IoT depends on solving the underlying security and privacy challenges. Following the spirit of NDSS, the goal of this workshop is to bring together researchers and practitioners to analyze and discuss decentralized security in the IoT. DISS features a keynote, several papers, and a panel discussion.

The new workshop this year is the Workshop on Measurements, Attacks and Defenses for the Web (MADWeb). The web connects billions of devices, running numerous types of clients, and serves billions of users every day. To cope with such a widespread adoption, the web constantly changes. This is evident by some browsers that have a release cycle of just six weeks. These rapid changes are not always studied from a security perspective, resulting in new attack vectors that were never observed before. The MADWeb is looking to connect researchers working at the intersection of browser evolution and web security. The goal is to create a new venue for discussing the rapid changes to browsers from a security perspective, the security implications of current web technologies, and how we can make browsers in the future more secure without hindering the evolution of the web.

Finally, the Workshop on Usable Security (USEC 2019) is one of the original NDSS workshops and is occurring at NDSS for the sixth consecutive year. You can see the results from the previous five years of USEC at NDSS plus three sister events held in Europe (EuroUSEC) here. This workshop has long focused on considering technical as well as human aspects of security. Enabling people to manage privacy and security necessitates giving due consideration to the users and the larger operating context within which technology is embedded. This year, and possibly for future USEC workshops, exceptional USEC papers will be invited to publish extended versions in a special issue of the Journal of Cybersecurity.


Moving beyond the workshops, NDSS will also feature Dr. Deborah Frincke. Dr. Frincke leads the Research Directorate of the National Security Agency (NSA). She will speak on the modern challenges for cyber defense, asking the attendees how we meet the challenge of cyber defense as technological advancement creates a world where an adversary has more opportunity to break into our framework of order.

NDSS 2019 Papers

The main content of NDSS 2018 is of course the set of papers to be presented and published. This year there are 89 peer-reviewed papers organized into 19 sessions, representing around 20% of the original submissions. Topics are wide ranging and include authentication, cryptography, censorship, privacy, blockchain, IoT, and mobile and web security. Papers, slides, and videos of all the talks will eventually be available on the NDSS 2019 programme page.

The final program component of NDSS 2019 is the Monday night Poster Session and Reception. This session will feature 35 posters of recently published or newly emerging research. Attendees will have a chance to vote for their favorite posters with special prizes being awarded in different categories.

The Internet Society is proud to have been associated with NDSS for over 20 years. We are excited to see the results of this year’s event! As of this writing, we are smashing all our recent records including number of accepted papers, number of accepted posters, and total attendees. Congratulations to all the workshop speakers, NDSS authors and speakers, and poster presenters for contributing to what will surely be an exciting week of research discussion and collaboration leading to significant advancements in network and system security.

Follow along via our social media channels – TwitterFacebook, and LinkedIn, or search/post using #NDSS19. See you in San Diego!

Image courtesy of Wes Hardaker

Building Trust Improving Technical Security Technology

Announcing NDSS 2019 & the Call for Papers

It may seem far away, but it’s time to begin planning for the 26th Network and Distributed System Security Symposium. NDSS 2019 will once again be held in sunny San Diego at the lovely Catamaran Spa and Resort from 24-27 February 2019.

This annual security symposium is a premiere venue for fostering information exchange among researchers and practitioners of network and distributed system security. The target audience includes those interested in practical aspects of network and distributed system security, with a focus on actual system design and implementation. A major goal is to encourage and enable the Internet community to apply, deploy, and advance the state of available security technologies.

NDSS 2019 will have a new General Chair, Dr. Trent Jaeger of Pennsylvania State University. In addition, the Program Committee for NDSS 2019 is being chaired by Dr. Alina Opera of Northeastern University and Dr. Dongyan Xu of Purdue University. Additional positions will be announced in the coming weeks.

Most importantly for all you researchers out there, the NDSS 2019 Call for Papers has been released. As in years past, the focus of the symposium will be the many aspects of security and privacy including the security of emerging networks including the Internet of Things (IoT), integrating security into network protocols, security for future Internet architectures, usable security and privacy, and security for large-scale critical infrastructure. Many of these topics are of keen interest to the Internet Society community. The submission site will open on 6 July, and the deadline for submissions is 7 August. Questions about the CFP can be addressed to the program chairs at and general questions about NDSS can be sent to

Additionally, the NDSS 2019 team is beginning the work of signing up sponsors for the event. As a premiere security research event, NDSS gives you the opportunity to support the next generation of security research and researchers. There are numerous ways that the broader security and Internet community can help support NDSS. Additional information will be forthcoming at In the meantime, expressions of interest can be sent to

It seems like just yesterday that NDSS 2018 was wrapping up with the last tweets, Facebook, and LinkedIn posts focusing on various high points. NDSS 2018 was indeed a stunning success with high quality research results presented, record attendance numbers, and four quality co-located workshops. All the papers, slides, and videos from NDSS 2018 are still available online at

We look forward to another amazing event next February, and we hope you’ll be part of it! Remember to use #NDSS19 in all your social media posts along the way.