For more details about my papers (e.g., citation count or versions hosted elsewhere), visit Google Scholar or DBLP.

2023

Security Best Practices: A Critical Analysis Using IoT as a Case Study
David Barrera, Christopher Bellman, and P.C. van Oorschot
ACM Transactions on Privacy and Security, 26(2):13:1–13:30, 2023.
[DOI] [arXiv]

A Close Look at a Systematic Method for Analyzing Sets of Security Advice
David Barrera, Christopher Bellman, and P.C. van Oorschot
Journal of Cybersecurity, 9(1), Oxford University Press, Jul 2023.
[DOI] [arXiv]

Escaping Vendor Mortality: A New Paradigm for Extending IoT Device Longevity
Conner Bradley and David Barrera
New Security Paradigms Workshop (NSPW). 2023. To appear.

2022

Towards Characterizing IoT Software Update Practices
Conner Bradley and David Barrera
International Symposium on Foundations & Practice of Security (FPS). 2022. To appear.

If-This-Then-Allow-That (to Phone Home): A Trigger-Based Network Policy Enforcement Framework for Smart Homes
Anthony Tam, Furkan Alaca, David Barrera
International Symposium on Foundations & Practice of Security (FPS). 2022. To appear.

2021

The EDIT Survey: Identifying Emergency Department Information Technology Knowledge and Training Gaps
Daniel Kollek, David Barrera, Elizabeth Stobert, Valérie Homier
Journal of Disaster Medicine and Public Health Preparedness. 2021
[DOI]

2020

bpfbox: Simple Precise Process Confinement with eBPF
William Findlay, Anil Somayaji, David Barrera
The ACM Cloud Computing Security Workshop (CCSW). 2020
[PDF] [code]
Additional links: 2020 eBPF Summit lightning talk video

SERENIoT: Distributed Network Security Policy Management and Enforcement for Smart Homes
Corentin Thomasset, David Barrera
ACSAC 2020
[PDF][slides]

Understanding Cybersecurity Practices in Emergency Departments
Elizabeth Stobert, David Barrera, Valerie Homier, Daniel Kollek
In Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems (CHI). 2020
[PDF]

2018

Standardizing IoT Network Security Policy Enforcement
David Barrera, Ian M. Molloy, Heqing Huang
In Proceedings of the NDSS Workshop on Decentralized IoT Security and Standards (DISS). 2018
[PDF] [slides]
Full paper available as a technical report on [arXiv].

TARANET: Traffic-Analysis Resistant Anonymity at the NETwork layer
Chen Chen, Daniele E. Asoni, Adrian Perrig, David Barrera, George Danezis, Carmela Troncoso
In Proceedings of the IEEE European Symposium on Security and Privacy (EuroS&P). 2018
[PDF] [slides]

2017

The SCION Internet Architecture
David Barrera, Laurent Chuat, Adrian Perrig, Raphael M. Reischuk, and Pawel Szalachowski
In Communications of the ACM. 60(6):56-65, June 2017.
[PDF] [bibtex] [online]

Internet Killswitches Demystified
Benjamin Rothenberger, Daniele E. Asoni, David Barrera, Adrian Perrig
In Proceedings of the 10th European Workshop on Systems Security (EuroSec). 2017
[PDF] [bibtex]

2016

Source Accountability with Domain-brokered Privacy
Taeho Lee, Christos Pappas, David Barrera, Pawel Szalachowski, Adrian Perrig
In Proceedings of the International Conference on emerging Networking EXperiments and Technologies (ACM CoNEXT). 2016.
[PDF] [bibtex]

Modeling Data-Plane Power Consumption of Future Internet Architectures
Chen Chen, David Barrera, Adrian Perrig
In Proceedings of the International Conference on Collaboration and Internet Computing (IEEE CIC). 2016.
[PDF] [bibtex]

Picking a (Smart) Lock: Locking Relationships on Mobile Devices (Extended Abstract)
Elizabeth Stobert, David Barrera
In SOUPS Who are you?! Adventures in Authentication Workshop (WAY). 2016
[PDF] [bibtex] [slides]

2015

What Lies Beneath? Analyzing Automated SSH Bruteforce Attacks
AbdelRahman Abdou, David Barrera, Paul C. van Oorschot
In Proceedings of the International Conference on Passwords. 2015.
[PDF] [bibtex] [slides]

On Building Onion Routing into Future Internet Architectures
Daniele Asoni, Chen Chen, David Barrera, Adrian Perrig
In Proceedings of the IFIP WG 11.4 International Workshop (iNetSec). 2015.
[PDF] [bibtex]

HORNET: High-speed Onion Routing at the Network Layer
Chen Chen, Daniele Asoni, David Barrera, George Danezis, Adrian Perrig
In Proceedings of the Conference on Computer and Communications Security (CCS). 2015.
[PDF] [bibtex] [Google Scholar Citations]
Press coverage: BBC, Engadget, The Register, Ars Technica, Vice
Discussion: Hacker News, Reddit

A First Look at the Usability of Bitcoin Key Management
Shayan Eskandari, David Barrera, Elizabeth Stobert, Jeremy Clark
In Proceedings of the NDSS Workshop on Usable Security (USEC). 2015.
[PDF] [bibtex] [slides] [Google Scholar Citations]

Bootstrapping Real-world Deployment of Future Internet Architectures (Technical Report)
Tae-Ho Lee, Pawel Szalachowski, David Barrera, Adrian Perrig, Heejo Lee, David Watrin
[arXiv]

2014

Baton: Certificate Agility for Android’s Decentralized Signing Infrastructure
David Barrera, Daniel McCarney, Jeremy Clark, P.C. van Oorschot
In Proceedings of the Conference on Security and Privacy in Wireless and Mobile Networks (ACM WiSec). 2014
[PDF] [Poster] [bibtex] [slides]

2013

Deadbolt: Locking Down Android Encryption
Adam Skillen, David Barrera, P.C. van Oorschot
In Workshop on Security and Privacy in Smartphones and Mobile Devices (ACM SPSM). 2013.
[PDF] [bibtex]

2012

Tapas: Design, Implementation, and Usability Evaluation of a Password Manager
Daniel McCarney, David Barrera, Jeremy Clark, Sonia Chiasson, P.C. van Oorschot
In Proceedings of the Annual Computer Security Applications Conference (ACSAC). 2012.
[PDF] [Poster] [bibtex] [Google Scholar citations]

ThinAV: Truly Lightweight Mobile Cloud-based Anti-malware
Chris Jarabek, David Barrera, John Aycock
In Proceedings of the Annual Computer Security Applications Conference (ACSAC). 2012.
[PDF] [bibtex] [Google Scholar citations]

Understanding and Improving App Installation Security Mechanisms through Empirical Analysis of Android
David Barrera, Jeremy Clark, Daniel McCarney, P.C. van Oorschot In Workshop on Security and Privacy in Smartphones and Mobile Devices (ACM SPSM). 2012.
[PDF] [bibtex] [Google Scholar citations]

Meteor: Seeding a Security-Enhancing Infrastructure for Multi-market Application Ecosystems
David Barrera, William Enck, P.C. van Oorschot
In Mobile Security Technologies Workshop (IEEE MoST). 2012.
[PDF] [bibtex] [Google Scholar citations]

2011

Mercury: Recovering Forgotten Passwords Using Personal Devices
Mohammad Mannan, David Barrera, Carson Brown, David Lie, P.C. van Oorschot
In Proceedings of the International Conference on Financial Cryptography and Data Security (FC). 2011.
[PDF] [bibtex]

Back to the Future: Revisiting IPv6 Privacy Extensions
David Barrera, Glenn Wurster, P.C. van Oorschot
In ;LOGIN: The USENIX Magazine 36(1):16–26, 2011.
[PDF] [bibtex] [Google Scholar Citations]

Secure Software Installation on Smartphones
David Barrera and P.C. van Oorschot
In IEEE Security and Privacy Magazine. 9(3):42–48, 2011.
[PDF] [Poster] [bibtex] [Google Scholar Citations]

2010

A Methodology for Empirical Analysis of Permission-based Security Models and its Application to Android
David Barrera, H.G. Kayacik, P.C. van Oorschot, Anil Somayaji
In Proceedings of the 17th Conference on Computer and Communications Security (ACM CCS). 2010.
[PDF] [bibtex] [Google Scholar Citations]

Accommodating IPv6 Addresses in Security Visualization Tools
David Barrera and P.C. van Oorschot
In SAGE Information Visualization. 10(2):107–116, 2010.
[PDF] [bibtex]

2009

FiGD: An Open Source Intellectual Property Violation Detector
Carson Brown, David Barrera, Dwight Deugo
In Proceedings of the 21st International Conference on Software Engineering and Knowledge Engineering (SEKE). 2009.
[PDF] [bibtex] [Google Scholar Citations]

Security Visualization Tools and IPv6 Addresses
David Barrera, P.C. van Oorschot
In Proceedings of the 6th International Workshop on Visualization for Cyber Security (VizSec). 2009.
[PDF] [bibtex]

2008

Improving Security Visualization with Exposure Map Filtering
Mansour Alsaleh, David Barrera, P.C. van Oorschot
In Proceedings of the 24th Annual Computer Security Applications Conference (ACSAC). 2008.
[PDF] [Poster] [bibtex]

Theses

Securing Decentralized Software Installation and Updates
David Barrera
PhD thesis, Carleton University 2014.
[PDF] [bibtex]

Towards Classifying and Selecting Appropriate Security Visualization Techniques
David Barrera
Master’s thesis, Carleton University 2009.
[PDF] [bibtex]

Posters

Analyzing TLS Use on IoT Devices
Corentin Thomasset and David Barrera
Presented at Usenix Security 2018
[Poster]

Implications of IPv6 on Host Discovery and Network Scanning Detection
Mansour Alsaleh, David Barrera, P.C. van Oorschot
Presented at the NSERC ISSNet Workshop 2010
[Poster]