Media
Documents:
Photos:
Audio/Podcasts:
Biography
Alan Mislove is an Associate Professor at the College of Computer and Information Science at Northeastern University. He received a BA, MS, and PhD from Rice University in 2002, 2005, and 2009, respectively. Professor Mislove’s research concerns distributed systems and networks, with a focus on using social networks to enhance the security, privacy, and efficiency of newly emerging systems. He was a recipient of the NSF CAREER Award in 2011, and his work has been covered by the Wall Street Journal, the New York Times, and the CBS Evening News.
Areas of Expertise (4)
Newly Emerging Systems
Security and Systems
Distributed Systems and Networks
Social Networks
Education (3)
Rice University: Ph.D., Computer Science 2009
Rice University: M.S., Computer Science 2005
Rice University: B.A., Computer Science 2002
Links (3)
Media Appearances (5)
Facebook said to use people's phone numbers for ad targeting
CBS News online
2018-09-28
The social-media giant is using phone numbers provided in two-factor authentication, or the security measure when services ask consumers to provide two pieces of data to verify their identity. Often, this is a code texted to the user on their mobile phone. But Facebook is reportedly using those numbers to better target consumers with ads, according to TechCrunch.
Facebook slated over phone ad push
BBC News online
2018-09-28
Details about the targeted ad campaigns emerged from research by academics at Northeastern University and Princeton University in the US. Reporters for tech news site Gizmodo also helped to stage tests which showed the data was being used to drive advertising.
Facebook lets advertisers target you using 'shadow' phone numbers
The Telegraph online
2018-09-27
The research lays bare the extent of Facebook’s “shadow profiles” – extra data the company collects on users and which it will not reveal that it holds because the information technically belongs to someone else.
Yes Facebook is using your 2FA phone number to target you with ads
TechCrunch online
2018-09-27
Facebook’s confession follows a story Gizmodo ran a story yesterday, related to research work carried out by academics at two U.S. universities who ran a study in which they say they were able to demonstrate the company uses pieces of personal information that individuals did not explicitly provide it to, nonetheless, target them with ads.
Facebook under fire for 'shadow' advertising, which let brands target content based on users' private information
DailyMail.com online
2018-09-26
A new investigation has found that the social media giant permits some advertisers to take user information provided for security purposes and use it to serve up targeted content, according to Gizmodo.
Articles (3)
On Ridesharing Competition and Accessibility: Evidence from Uber, Lyft, and Taxi
International World Wide Web Conferences Steering Committee
Shan Jiang, Le Chen, Alan Mislove, Christo Wilson
2018 Ridesharing services such as Uber and Lyft have become an important part of the Vehicle For Hire (VFH) market, which used to be dominated by taxis. Unfortunately, ridesharing services are not required to share data like taxi services, which has made it challenging to compare the competitive dynamics of these services, or assess their impact on cities. In this paper, we comprehensively compare Uber, Lyft, and taxis with respect to key market features (supply, demand, price, and wait time) in San Francisco and New York City...
A First Look at Certification Authority Authorization (CAA)
ACM
Quirin Scheitle, Taejoong Chung, Jens Hiller, Oliver Gasser, Johannes Naab, Roland van Rijswijk-Deij, Oliver Hohlfeld, Ralph Holz, Dave Choffnes, Alan Mislove, Georg Carle
2018 Shaken by severe compromises, the Web's Public Key Infrastructure has seen the addition of several security mechanisms over recent years. One such mechanism is the Certification Authority Authorization (CAA) DNS record, that gives domain name holders control over which Certification Authorities (CAs) may issue certificates for their domain. First defined in RFC 6844, adoption by the CA/B forum mandates that CAs validate CAA records as of September 8, 2017...
Analysis of SSL certificate reissues and revocations in the wake of heartbleed
ACM
Liang Zhang, David Choffnes, Tudor Dumitraş, Dave Levin, Alan Mislove, Aaron Schulman, Christo Wilson
2018 A properly managed public key infrastructure (PKI) is critical to ensure secure communication on the Internet. Surprisingly, some of the most important administrative steps---in particular, reissuing new X. 509 certificates and revoking old ones---are manual and remained unstudied, largely because it is difficult to measure these manual processes at scale...
Social