Deprecated: The each() function is deprecated. This message will be suppressed on further calls in /home/zhenxiangba/zhenxiangba.com/public_html/phproxy-improved-master/index.php on line 456
Richard Clayton: Various Talks
[go: Go Back, main page]

Various Talks by Richard Clayton

I have collected together the slides from various talks that I have given. They may give you some idea of what you missed, though of course without the animations and my chatter, they are but a pale shadow....

My Cambridge lecture notes are kept elsewhere.

  • 2008-09-23: IWF Board & Funding Council, London: Child Sexual Abuse Image Website Takedown Times
    Slides in PDF format for my talk to the IWF about the take-down times for child sexual abuse websites. This summarised the results from the WEIS paper that Tyler Moore and I wrote earlier in the year.
  • 2008-09-22: Hills Road Sixth Form College, Cambridge: Introducing Cryptanalysis
    Slides in PDF format for my introduction to cryptanalysis talk, to students considering taking part in the 2008 National Cipher Challenge.
  • 2008-09-19: ENISA-FORTH Summer School on Network and Information Security, Crete, Greece: "Security Economics" and "Network Security"
    Slides in PDF format for my two hour lecture introducing the field of "security economics" and then explaining the recommendations of the report I coauthored for ENISA on "Security Economics and the Internal Market".
  • 2008-09-15: Checkpoint Course, Computer Laboratory, Cambridge: An ISP View of Security
    Slides in PDF format for my lecture on spotting spam by log processing, and insecurities in DNS and BGP, part of a weeklong course run for Checkpoint personnel.
  • 2008-09-15: Checkpoint Course, Computer Laboratory, Cambridge: Traceability
    Slides in PDF format for my lecture on traceability, part of a weeklong course run for Checkpoint personnel.
  • 2008-09-08: LSEC Information Security Economics 2008, K.U. Leuven, Leuven, Belgium: "Security Economics" and "Network Security"
    Slides in PDF format for my talk introducing the field of "security economics" and then explaining the recommendations of the report I coauthored for ENISA on "Security Economics and the Internal Market".
  • 2008-09-03: 26th International Symposium on Economic Crime, Jesus College, Cambridge: Co-operating to tackle "phishing" ?
    Slides in PDF format for my brief talk on how a lack of cooperation between brand protection companies is damaging phishing website take-down effectiveness.
  • 2008-08-22: CEAS 2008, Fifth Conference on Email and Anti-Spam, Mountain View CA, USA: Do Zebras get more Spam than Aardvarks?
    Slides in PDF format for my talk about an academic paper that considered the extent to which the first letter of the local part (left of the @) of an email address influences how much spam is received. The answer, it seems, is quite a lot!
  • 2008-08-20: Berkeley Univ California, USA: What we now know about phishing websites
    Slides in PDF format for a talk summarising a years worth of research into phishing, covering the papers I have written with Tyler Moore. Essentially the same talk as on the 18th and 19th!
  • 2008-08-19: Yahoo!, Sunnyvale, Ca, USA: What we now know about phishing websites
    Slides in PDF format for a talk summarising a years worth of research into phishing, covering the papers I have written with Tyler Moore. Essentially the same talk as on the 18th and 20th!
  • 2008-08-18: PARC, Palo Alto, Ca, USA: What we now know about phishing websites
    Slides in PDF format for a talk summarising a years worth of research into phishing, covering the papers I have written with Tyler Moore. Essentially the same talk as on the 19th and 20th!
  • 2008-05-19: LINX61, London, UK: Phorm: Function & Legal Failings
    Slides in PDF format for my talk at the LINX quarterly meeting which explained how the Phorm system works, and the types of legal problem that ISPs who deployed it were likely to encounter.
  • 2008-04-15: The Phorm system: a Town Hall dialogue and briefing, London, UK: Problems with Phorm
    Slides in PDF format for my talk at this public meeting organised by 80/20 Thinking. See here, for the BBC report on the meeting (other press accounts are available).
  • 2008-03-30: All Party Parliamentary Engineering and IT Group, House of Lords, London, UK: Internet Security -- engineering solutions to societal needs
    I gave the main talk at this lunch for young engineers, and then answered a number of questions from the audience of engineers and parliamentarians.
  • 2008-03-19: IET, Musicians, fans and online copyright, London, UK: Technical limits on ISP Actions
    Slides in PDF format for a talk on the different systems that ISPs use for monitoring or blocking traffic, and how these completely different technologies relate, in their own way, to online copyright issues.
  • 2008-03-06: IET, BCS & ACM Joint Lecture, Cambridge, UK: Searching for Evil
    Slides in PDF format for yet another variant of this popular talk.
  • 2008-02-11: LINX60, London, UK: All your mailserver are belong to us
    Slides in PDF format for a talk about DNS and BGP security.
  • 2008-02-07: London Geek Dinner, London, UK: Evil ways to make money on the Internet
    This version of the 'Searching for Evil' talk was given in the upstairs of a Fleet Street pub, so no powerpoint! Some enthusiasts captured the talk on video (pt1, pt2, pt3, pt4), on tape, and there is even a (sort of) transcript.
  • 2008-01-16: Computer Laboratory Seminar, Cambridge, UK: Searching for Evil
    Slides in PDF format for the revised version of the talk given by Ross Anderson and myself about bad things on the Internet. We originally gave this talk together for Google in London in August 2007, then Ross gave it alone in California, the video of which you can watch here. The talk we gave in Cambridge was also recorded, so you can watch the video of this version in Real or WMV format.
  • 2008-01-14: UKNOF9, London, UK: Personal Internet Security -- House of Lords Select Committee Inquiry Report: August 2007
    Slides in PDF format for my talk about what conclusions the Science and Technology Committee reached, and an indication as to why.
  • 2007-10-30: Byron Inquiry, London, UK: Content filtering: methods and failures
    Slides in PDF format for my private briefing for Dr Tanya Byron and her inquiry team about the practical issues that arise when attempting to filter bad content.
  • 2007-10-03: WACI, Boston MA, US: Spotting spam in sampled sFlow
    Slides in PDF format for my talk about spamHINTS at this Workshop on Application Classification and Identification.
  • 2007-09-05: 25th International Symposium on Economic Crime, Jesus College, Cambridge: Tackling "phishing"
    Slides in PDF format for my talk, to an audience of bankers and law enforcement officials, about our work in tackling phishing.
  • 2007-08-21: LINX58, London, UK: spamHINTS (and some more)
    Slides in PDF format for my talk giving a brief update on the spamHINTS project, along with some of what we've been learning about phishing (especially "fastflux" hosting) along with a discussion of some of the "evil" communities that we are beginning to identify.
  • 2007-08-21: LINX58, London, UK: spamHINTS (and some more)
    Slides in PDF format for my talk giving a brief update on the spamHINTS project, along with some of what we've been learning about phishing (especially "fastflux" hosting) along with a discussion of some of the "evil" communities that we are beginning to identify.
  • 2007-08-14: Google, London, UK: Searching for Evil
    Slides in PDF format for my sections of a joint talk that Ross Anderson and I gave about various communities, of varying degrees of 'evilness' that we have come across -- and the extent to which search engines, such as Google might be aware of them.
  • 2007-08-03: CEAS 2007, Fourth Conference on Email and Anti-Spam, Mountain View CA, USA: Email Traffic: A Quantitative Snapshot
    Slides in PDF format for my talk about an academic paper giving details of one months worth of email, and some analysis of how mcuh of it was spam, how much forwarded and how much came from mailing lists.
  • 2007-07-31: MarkMonitor, San Francisco CA, USA: The impact of website take-down on phishing
    Slides in PDF format for my talk, kindly hosted by MarkMoniotor, to various anti-phishing industry people about our work measuring phishing website takedown. The talk is mainly based on the figures from our WEIS paper but it does contain a preview of later results which were (in corrected form) placed into the APWG researchers forum paper (to appear).
  • 2007-06-12: Digital Phishnet, Berlin, Germany: The impact of website take-down on phishing
    Slides in PDF format for my talk about our work measuring phishing website takedown. The talk is mainly based on the figures from our WEIS paper but it does contain a preview of later results which were (in corrected form) placed into the APWG researchers forum paper (to appear).
  • 2007-05-24: EU Spam Symposium, Vienna, Austria: Detecting email spam in sampled traffic data from LINX
    Slides in PDF format for my talk about the spamHINTS project. There is also a summary of my various techniques for detecting email spam by looking at email server logs. You can watch a video of this session (with a nasty buzz on the soundtrack) here.
  • 2007-05-22: TERENA, Lyngby, Denmark: Using Traffic Analysis to Detect Email Spam
    Slides in PDF format for my talk summarising my work on various techniques for detecting email spam by looking at email server logs. You can watch a video of this session (I'm the first speaker, immediately after the introduction) here.
  • 2007-02-23: University of Birmingham: Anonymity and Traceability
    Slides and Notes in PDF format for a lecture given to Birmingham undergraduates in their "Communication Skills and Professional Issues Course". This is basically one of my Cambridge lectures recycled for a similar audience!
  • 2006-11-21: LINX 55, London, UK: ISP Content Filtering: methods, failures and some politics
    Slides in PDF format for another one of my high speed tutorials on content filtering issues.
  • 2006-11-15: COSIC, ESAT, Leuven, Belgium: ISP Content Filtering: methods failures and some politics
    Slides in PDF format for a seminar that covered my work on the BT Cleanfeed system (this paper) and the Great Firewall of China (this paper). Note that despite a familiar looking title, this was rather more extended than my UKNOF5 and LINX55 talks.
  • 2006-11-13: Blocking Denial of Service Attacks on the Internet, London, UK: [Contractual Terms Between] ISPs and Their Customers
    Slides in PDF format for my talk on ISP's relationships with their customers.
  • 2006-11-02: House of Lords Select Committee on Science and Technology, London, UK: Personal Internet Security
    Slides in PDF format for my initial (private) briefing to the Select Committee on the issues that would arise during their 2006--2007 inquiry into Personal Internet Security. The final report of the Committee can be read on the House of Lords website, here.
  • 2006-10-26: UKNOF5, London, UK: ISP Content Filtering: methods, failures and some politics
    Slides in PDF format for my high speed tutorial on content filtering issues.
  • 2006-09-07: P2P2006, Sixth IEEE International Conference on Peer-to-Peer Computing, Cambridge, UK: Route Fingerprinting in Anonymous Communication
    Slides in PDF format for my talk about an academic paper written by George Danezis and myself about some attacks on the initial version of the system that was once called Tarzan and which could well be effective against other systems that are unaware of the dangers and attempt to be efficient when dealing with anonymous networks with very large numbers of nodes.
  • 2006-08-14: Scrambling for Safety 8: The Home Office Consultation on "Acquisition and Disclosure of Communications Data"
    Slides in PDF format to accompany a talk on the Home Office consultation on a Code of Practice for Part I Chapter II of the RIP Act 2000.
  • 2006-07-28: CEAS 2006, Third Conference on Email and Anti-Spam, Mountain View CA, USA: Using Early Results from the 'spamHINTS' Project to Estimate an ISP Abuse Team's Task
    Slides in PDF format for my talk about an academic paper about the latest results from analysing email server logs, and how the earliest results from the spamHINTS project shed light on the number of email senders at an ISP.
  • 2005-07-26: ICSI, Berkeley, CA, USA: Ignoring the Great Firewall of China
    Slides in PDF format for my lunchtime talk about an academic paper on how the "Great Firewall of China" can be made ineffective, at least in part, by dropping reset packets.
  • 2006-07-07: SRUTI 2006, Second Workshop on Steps to Reducing Unwanted Traffic on the Internet, San Jose CA, USA: The Rising Tide: DDoS from Defective Designs and Defaults
    Slides in PDF format for my talk about an academic paper about the problems with D-Link systems sending unwanted NTP traffic, and showing how this is part of a pattern of "attacks" that cause significant problems.
  • 2006-06-29: PET 2006, Sixth Workshop on Privacy Enhancing Technologies, Cambridge, UK: How to annoy the General Chair (how pre-proceedings work)
    Slides in PDF format for my rump session talk on the issues that arise when creating pre-proceedings for an academic conference.
  • 2005-06-28: PET 2006, Sixth Workshop on Privacy Enhancing Technologies, Cambridge, UK: Ignoring the Great Firewall of China
    Slides in PDF format for my talk to accompany an academic paper on how the "Great Firewall of China" can be made ineffective, at least in part, by dropping reset packets.
  • 2006-05-16: LINX 53, London: spamHINTS update
    Slides in PDF format for my progress report (with some very early sFlow results) to LINX on my spamHINTS project to examine sFlow traffic data on an Internet Exchange to pick out the patterns that are the senders of spam.
  • 2006-03-09: ISPA Legal Forum on The Data Retention Directive: I keep six honest serving men
    Slides in PDF format for a talk at this forum on the impact of Data Retention Directive on the ISP industry. The Kipling poem illustrates the number of questions that remain to be answered.
  • 2006-02-28: Computer Laboratory Seminar, Cambridge: Hiding on an Ethernet
    Slides in PDF format for a seminar on how to impersonate other users on at Ethernet. This is presenting the work in Chapter 4 of my thesis albeit with some more material to cover what I have learnt since that was submitted and examined.
  • 2006-02-24: University of Birmingham: Anonymity and Traceability
    Slides and Notes in PDF format for a lecture given to Birmingham undergraduates in their "Communication Skills and Professional Issues Course". This is basically one of my Cambridge lectures recycled for a similar audience!
  • 2006-02-21: LINX 52, London: spamHINTS update
    Slides in PDF format for my progress report to LINX on my spamHINTS project to examine sFlow traffic data on an Internet Exchange to pick out the patterns that are the senders of spam.
  • 2005-11-23: LINX 51, London: spamHINTS
    Slides in PDF format for my pitch to LINX on my proposal to examine sFlow traffic data on an Internet Exchange to pick out the patterns that are the senders of spam.
  • 2005-11-10: Government-Industry Forum, Gatwick: RIP Part III "in an intelligible form"
    Slides in PDF format for my talk to the Government-Industry Forum (once called the Government Industry Encryption Forum) reminding those present as to where RIP Part III came from, what is was supposed to do, and what the problems with it were going to be.
  • 2005-09-07: 23rd International Symposium on Economic Crime, Jesus College, Cambridge: Bad Things in Your In-Box
    Slides in PDF format to accompany a talk I gave, along with Mike Bond at this symposium.
  • 2005-07-22: CEAS 2005: Second Workshop on Email and Anti-Spam, Harvard, CA, USA: Stopping Outgoing Spam by Examining Incoming Server Logs
    Slides in PDF format for my talk to accompany an academic paper on how by examining incoming server logs you can spot the traffic that one ISP customer is sending to another. This turns out to be an effective method of detected customers who are infected by viruses or who are, generally inadvertently, sending email spam.
  • 2005-06-02: Luncheon Talk, Berkman Center, Harvard Law School: Failures in a Hybrid Content Blocking System
    Slides in PDF format for my talk to the Berkman Center people, who are part of the OpenNet Initiative, on the issues raised by my academic paper on the BT "CleanFeed" content blocking system.
  • 2005-06-02: WEIS05, Fourth Workshop on the Economics of Information Security: Modelling Incentives for Email Blocking Strategies
    Slides in PDF format for my talk to accompany an academic paper that introduces a model for the blocking of incoming email from ISPs (and entire ASs).
  • 2005-05-31: PET 2005, Fifth Workshop on Privacy Enhancing Technologies, Cavtat, Croatia: Failures in a Hybrid Content Blocking System
    Slides in PDF format for my talk to accompany an academic paper on the BT "CleanFeed" content blocking system.
  • 2005-05-31: PET 2005, Fifth Workshop on Privacy Enhancing Technologies, Cavtat, Croatia: Revocable Anonymity
    Slides in PDF format for my contribution to the panel on "Revocable Anonymity".
  • 2005-04-20: Thirteenth Cambridge Protocols Workshop, Sidney Sussex: Insecure Real-World Authentication Protocols (or Why Phishing is so Profitable)
    Slides in PDF format for my talk to accompany an academic paper on the parlous state of authentication protocols in the banking sector.
  • 2005-03-16: University College, London: Anti-Spam and Anti-Phishing: a Reality Check
    Slides in PDF format for my talk in UCL's seminar series. I covered the failure of universal proof-of-work systems to deliver, the success of ISP log processing (extrusion detection) and tacked on some remarks about tackling phishing.
  • 2005-03-03: Financial Cryptography 2005: Security Economics Panel
    Slides in PDF format for my panel presentation on economics as a way of looking at computer security problems.
  • 2005-02-28: Financial Cryptography 2005: Phishing Panel
    Slides in PDF format for my panel presentation on phishing. The little essay on this topic from the proceedings should be read to more fully understand my viewpoint.
  • 2004-07-31: CEAS 2004: Stopping Spam by Extrusion Detection
    Slides in PDF format to accompany academic paper on a system for processing "smarthost" email logs to determine which of an ISP's customers are, probably inadvertently, sending spam.
  • 2004-07-30: CEAS 2004: Panel on Payment Systems for Email
    Slides in PDF format to accompany my contribution to a panel on whether payment systems (of various kinds) for email would help to prevent spam. I conclude not.
  • 2004-07-20: ASRG Seminar MIT: "Proof-of-Work" Proves Not to Work
    Slides in PDF format to accompany yet another version of this talk relating to my academic paper on how a simple-minded anti-spam scheme using "Proof-of-Work" (also known as "Client-Puzzles" or "HashCash") will not work.
  • 2004-06-07: Economics, Networks and Security Seminar; Economics Faculty, Cambridge: "Proof-of-Work" Proves Not to Work
    Slides in PDF format to accompany another talk relating to my academic paper on how a simple-minded anti-spam scheme using "Proof-of-Work" (also known as "Client-Puzzles" or "HashCash") will not work. Unlike the WEIS04 talk, these slides do not have the "power of ten" error that Ted Wobber spotted in the paper!
  • 2004-05-14: WEIS04: Third Annual Workshop on Economics and Information Security: "Proof-of-Work" Proves Not to Work
    Slides in PDF format to accompany an academic paper on how a simple-minded anti-spam scheme using "Proof-of-Work" (also known as "Client-Puzzles" or "HashCash") will not work.
  • 2004-03-11: John's College Computer Society: Using Low-cost Cryptographic Hardware to "Rob a Bank"
    Slides in PDF format to accompany a reprise of my talk about my DES cracker work.
  • 2004-03-09: Jesus College Computer Society: It Was Twenty Years Ago Today...
    Slides in PDF format to accompany a talk about the story of Locomotive Software and the development of the Amstrad CPC464 way back in 1983-1984.
  • 2004-02-03: Computer Laboratory Seminar, Cambridge: Extrusion Detection
    Slides in PDF format to accompany a talk in the Security Group seminar series.
  • 2003-10-22: Scrambling for Safety 7: You'd think that we understood it all by now!
    Slides in PDF format to accompany a brief talk at the start of a panel discussion.
  • 2003-10-01: Internet Awareness Day, New Scotland Yard: The Limits of Traceability
    Slides in PDF format to accompany a talk to an audience of ISPs, SPOCs (collective noun, "an enterprise of SPOCs"), and police officers. Having heard the other talks, I would now modify my remarks about jurisdictions to suggest that you avoided the US!
  • 2003-09-18: BCS Central London Branch: Email "Spam" A Problem for the Diplomats
    Slides in PDF format to accompany a talk to this BCS monthly meeting.
  • 2003-09-10: 21st International Symposium on Economic Crime, Jesus College, Cambridge: Techno-Risk
    Slides in PDF format to accompany a panel talk at this symposium.
  • 2003-06-17: Combating Identity Theft: On the Internet, nobody knows you're a dog! Identity on the Internet from the ISP viewpoint
    Slides in PDF format to accompany a talk given at this IPC conference. Since I haven't purchased the rights to use this cartoon on the web, you'd have to have attended the talk to see it (for which I had purchased the rights -- so as to make some general points about how merchants address identity!)
  • 2003-05-14: Scrambling for Safety 6: Purposes of Data Retention
    Slides in PDF format to accompany a talk given at this open meeting on the UK Government's consultation on data access and data retention. NB: I Am Not A Policeman, so my view of investigations is second-hand. The figures used come from statistics gathered by the Home Office.
  • 2003-04-29: Society for Computers & Law, London: ISPs, Telcos and Customers: A common view of data retention
    Slides in PDF format to accompany a talk given at an SCL London Group Meeting on "Retaining and Accessing Data: A Conflict of Interests?". The other speakers were Home Office officials who described the two current HO consultations in this area.
  • 2003-03-27: PET2003 Workshop, Dresden: A few design critiques
    Slides and notes in PDF format to accompany brief talk at the start of a panel discussion.
  • 2003-03-26: PET2003 Workshop, Dresden: Improving Onion Notation
    Slides in PDF format to accompany academic paper.
  • 2003-03-04: IOSCO Round Table, Amsterdam: Financial Regulation from an ISP's standpoint
    Slides in PDF format.
  • 2002-10-31: Compsoc, Oxford: Using Low-cost Cryptographic Hardware to "Rob a Bank"
    Slides in PDF format.
  • 2002-09-12: BA Festival of Science, Leicester: Lowering the cost of Bank Robbery
    Slides in PDF format.
  • 2002-02-27: ASRG Seminar, MIT: Traceability on the Internet
    Slides and notes in PDF format.
  • 2002-02-07: MCS Oxford (with Mike Bond): Using Low-cost Cryptographic Hardware to "Rob a Bank"
    Slides in PDF format.
  • 2002-02-04: Jesus College Computing Society: "Hacking cash machines" Extracting 3DES Keys from an IBM4758 running CCA software
    Slides in PDF format.
  • 2001-06-05: Computer Laboratory Seminar, Cambridge (with Mike Bond): A Low Cost Hardware Birthday Attack on DES
    Slides in PDF format.
  • 2001-04-26: IHW2001 Workshop, Pittsburg (with George Danezis): Real World Patterns of Failure in Anonymity Systems
    Slides in PDF format to accompany academic paper.
  • 2001-02-01: ISPA Legal Forum, London: Notice and Takedown, "Judge & Jury ?" revisited
    Slides in PDF format to accompany this talk to ISPs and lawyers.
  • 2001-01-24: 4th ECLIP II Workshop on Computer Crime: An ISP Perspective
    Slides in PDF format to accompany a talk to this workshop on the 'interception of computer crime'.
  • 2000-11-16: Living with RIP - a journalist's guide to surviving cyberregulation, ICA, London: RIP: There's someone at the door
    Slides in PDF format to accompany a talk to this conference, discussing the relevance of the RIP act to journalists.
  • 2000-10-31: Computer Laboratory Seminar, Cambridge: Practical Traceability (101)
    Slides in PDF format.
  • 2000-10-20: ISPA Legal Forum, London: RIP: its legal effects upon ISPs
    Slides in PDF format to accompany a talk to ISPs and lawyers.
  • 2000-06-15: ISPA Legal Forum, London: Judge & Jury ?
    Slides in PDF format to accompany this talk to ISPs and lawyers.
  • 2000-03-22: Scrambling for Safety 2000: RIPping into ISPs
    Slides in PDF format to accompany a talk on the industry attitude to the RIP Act.
  • 1998-10-08: Junk mail fatigue - finding a cure, LINX Conference, London: Techniques of the email marketeers
    Slides in PDF format to accompany a talk on unsolicited bulk email. Notable perhaps, in retrospect, for some of the statistics quoted!

Return to Richard Clayton's Home Page

last modified 18 MAY 2006 -- http://www.cl.cam.ac.uk/~rnc1/talks/index.html