Please see the list of revisions here.
We provide an interactive dataset of our MFA analysis at over 140 websites here.
Update (June 20, 2020): We have updated the paper to incorporate suggestions received during our submission to the Sixteenth Symposium on Usable Privacy and Security (SOUPS 2020), including discussion on the ethical considerations of our method. We thank the anonymous SOUPS reviewers for their feedback and guidance throughout the editing process! The updated paper is contentwise identical to the SOUPS version. The previous version can be found here.
Update (March 25, 2020): We have updated our annotated dataset with responses 60 days after our disclosure. Our paper draft has also been updated to include website names and disclosure responses. The previous version can be found here.
@inproceedings{lee2020empirical,
title={An Empirical Study of Wireless Carrier Authentication for $\{$SIM$\}$ Swaps},
author={Lee, Kevin and Kaiser, Benjamin and Mayer, Jonathan and Narayanan, Arvind},
booktitle={Sixteenth Symposium on Usable Privacy and Security ($\{$SOUPS$\}$ 2020)},
pages={61--79},
url = {https://www.usenix.org/conference/soups2020/presentation/lee},
year={2020}
}
We are computer science researchers affiliated with the Center for Information Technology Policy at Princeton University.
Kevin Lee | kvnl@cs.princeton.edu |
Ben Kaiser | bkaiser@princeton.edu |
Jonathan Mayer | jonathan.mayer@princeton.edu |
Arvind Narayanan | arvindn@cs.princeton.edu |