All contents on this web page, including papers, presentations and photos, are licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 2.5 License.
I am a final-year PhD student in Computer Science at the University of Cambridge. Ross Anderson is my supervisor, and I am a member of St John's College. Previously I attended the University of Tulsa, graduating with a BS in Computer Science and a BS in Applied Mathematics. My studies are supported by a Marshall Scholarship and NSF Graduate Research Fellowship.
My research interests include security economics, decentralised network (e.g., peer-to-peer, ad-hoc and sensor network) security, and complex network analysis. For more information on security economics and its applications, refer to the Economics and Security Resource Page maintained by Ross Anderson. We have also written a review article introducing the field's key contributions. Each year, new results are presented at WEIS - the Workshop on the Economics of Information Security. WEIS 2008 was held June 25-27 at Dartmouth College in Hanover, NH, USA.
NEW: My WEIS 2008 paper with Richard Clayton comparing the speed of website removal for various types of wicked content has been written up in the Guardian. Richard has written a blog post describing the part of the paper which has attracted the media's attention, namely, that websites hosting child-sexual-abuse images are removed much more slowly than any other type of content being actively removed from the Internet.
ENISA -- the European Network and Information Security Agency -- has published a report on security economics and European policy, which I co-authored along with Ross Anderson, Rainer Böhme and Richard Clayton. The report weighs policy options for tackling information security threats in a comprehensive manner. See press coverage in The Register. A shortened version summarizing the recommendations appeared at WEIS 2008, and is available here.
I recently wrote an article entitled Phishing and the economics of e-crime for Infosecurity Magazine. The article describes at a high level the empirical measurements of phishing I have been working on with Richard Clayton.
Infosecurity Magazine has written a news article describing our paper evaluating the so-called wisdom of crowds as a way to assess phishing websites.
The New Scientist has published an article describing our suicide protocol for revocation in distributed networks. Subsequently, another article has appeared in Techworld.
Tyler Moore and Richard Clayton. "The Impact of Incentives on Notice and Take-down." Seventh Workshop on the Economics of Information Security. June 26-28, 2008: Hanover, NH, USA. [Paper]
Ross Anderson, Rainer Böhme, Richard Clayton and Tyler Moore. "Security Economics and European Policy." Seventh Workshop on the Economics of Information Security. June 26-28, 2008: Hanover, NH, USA. [Paper]
Tyler Moore and Richard Clayton. "Evaluating the Wisdom of Crowds in Assessing Phishing Websites." 12th International Financial Cryptography and Data Security Conference (FC08). January 28-31, 2008: Cozumel, Mexico. [Paper | Presentation]
Tyler Moore and Richard Clayton. "Examining the Impact of Website Take-down on Phishing." Second APWG eCrime Researcher's Summit. October 4-5, 2007: Pittsburgh, PA, USA. (Best Paper Award, Cambridge Computer Lab 2007 Publication of the Year) [Paper | Presentation]
Tyler Moore and Richard Clayton. "An Empirical Analysis of the Current State of Phishing Attack and Defence." Sixth Workshop on the Economics of Information Security. June 7-8, 2007: Pittsburgh, PA, USA. [Paper | Presentation]
Ross Anderson, Tyler Moore, Shishir Nagaraja, and Andy Ozment. "Incentives and Information Security." In N. Nisan, T. Roughgarden, E. Tardos, and V. Vazirani, editors: Algorithmic Game Theory, pp. 633-649. Cambridge University Press, New York (2007) [Publisher site]
Ross Anderson and Tyler Moore. "The Economics of Information Security: A Survey and Open Questions." Fourth Bi-annual Conference on the Economics of the Software and Internet Industries. January 19-20, 2007: Toulouse, France. [Paper]
Ross Anderson and Tyler Moore. "The Economics of Information Security." Science 314 (5799), pp.610-613, October 27, 2006. [Paper | Link to original]
Tyler Moore. "The Economics of Digital Forensics." Fifth Workshop on the Economics and Information Security. June 26-28, 2006: Cambridge, England. [Paper]
Tyler Moore and Ross Anderson. "Trends in Security Economics." European Nework and Information Security Agency Quarterly. December 2005. [Paper]
Tyler Moore. "Countering Hidden-Action Attacks on Networked Systems." Fourth Workshop on the Economics and Information Security. June 2-3, 2005: Cambridge, MA, USA. [Paper | Presentation]
Tyler Moore, Maxim Raya, Jolyon Clulow, Panos Papadimitratos, Ross Anderson and Jean-Pierre Hubaux. "Fast Exclusion of Errant Devices from Vehicular Networks". Fifth Annual IEEE Communications Society Conference on Sensor, Mesh and Ad Hoc Communications and Networks (SECON). June 16-20, 2008: San Francisco, CA, USA. [Paper]
Tyler Moore, Jolyon Clulow, Ross Anderson and Shishir Nagaraja. "New Strategies for Revocation in Ad-Hoc Networks". Fourth European Workshop on Security and Privacy in Ad Hoc and Sensor Networks (ESAS). July 2-3, 2007: Cambridge, England. In LNCS 4572, pp. 232--246, 2007: Springer, Heidelberg, Germany. (Best Paper Award) [Paper | Presentation]
Tyler Moore and Jolyon Clulow. "Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks". In H. Venter, M. Eloff, L. Labuschagne, J. Eloff, and R. von Solms (eds.): New Approaches for Security, Privacy and Trust in Complex Environments, Proceedings of the IFIP TC 11 22nd International Information Security Conference (SEC 2007), 14-16 May 2007, Sandton, South Africa. IFIP Vol. 232, pp. 157-168, 2007: Springer, Heidelberg, Germany. [Paper | Presentation]
Jolyon Clulow, Gerhard Hancke, Markus Kuhn and Tyler Moore. "So Near and yet So Far: Distance-Bounding Attacks in Wireless Networks." Third European Workshop on Security and Privacy in Ad hoc and Sensor Networks (ESAS). September 20-21, 2006: Hamburg, Germany. In LNCS 4357, pp. 83--97, 2006: Springer, Heidelberg, Germany. [Paper | Presentation | Link to original]
Jolyon Clulow and Tyler Moore. "Suicide for the Common Good: a New Strategy for Credential Revocation in Self-Organizing Systems." ACM SIGOPS Operating Systems Reviews, volume 40, no. 3, pp. 18-21, July 2006. [Paper]
Tyler Moore. "A Collusion Attack on Pairwise Key Predistribution
Schemes for Distributed Sensor Networks." Third IEEE International
Workshop on Pervasive Computing and Communication Security. In
Financial Crypto 2009, the 13th International Financial Cryptography and Data Security Conference, Barbados, 2009. (General chair)
WEIS 2008, the 7th Workshop on the Economics of Information Security. Dartmouth College, Hanover, NH, June 25-27, 2008. (Program committee member)
ESAS 2007, the 4th European Workshop on Security and Privacy in Ad Hoc and Sensor Networks, Cambridge, UK, July 2-3, 2007. (Local arrangements chair)
PerSec 2007, the Fourth IEEE Workshop on Pervasive Computing and Communications Security. New York, March 2007 in conjunction with IEEE PerCom. (Program committee member)
First Annual IFIP WG 11.10 International Conference on Critical Infrastructure Protection. Dartmouth College, Hanover, NH, March 19-21, 2007. (Program committee member)
Fourth Annual IFIP WG 11.9 International Conference on Digital Forensics. Kyoto, Japan, January 27-30, 2008. (Program committee member)
My CV is available here.
My WEIS 2008 paper with Richard Clayton comparing the speed of website removal for various types of wicked content has been written up in the Guardian.
The New Scientist has published an article describing our suicide protocol for revocation in ad-hoc networks.
My paper with Richard Clayton examining the effectiveness of phishing site take-down strategies has been written up in the Guardian, Infosecurity Magazine, Computing (article and leader), and BCS News.
My paper with Richard Clayton presented at APWG eCrime has been written about in PC World.
I recently wrote an article entitled Phishing and the economics of e-crime for Infosecurity Magazine. The article describes at a high level the empirical measurements of phishing I have been working on with Richard Clayton.
My paper on the economics of digital forensics has attracted some media coverage here and here.
News from the Security Group is available on our blog, Light Blue Touchpaper.
I have supervised Part II Security and Part II Advanced Systems Topics.
Please be aware of my policies regarding supervisions.
I regularly post pictures from my travels. I have also created a map documenting where I have gone.
Phone: +44 1223 763 773
Fax: +44 1223 334 678
Email: Tyler.Moore@cl.cam.ac.uk
All contents on this web page, including papers, presentations and photos, are licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 2.5 License.