BZPEERReading, trust and collaboration for research
Menu

Discover

GraphFollow connections around a paper, topic or saved view.

Workspaces

HomePick up where your research flow left off.InboxHandle requests, replies and notifications from one place.CollectionsCurate reading lists, evidence sets and shareable dossiers.ResearchSee your private provenance graph, trail and imports.CollaborationMove from discovery into focused discussion rooms.PublishDraft, preview and publish full-text research articles.

Network

ExpertsFind specialists worth following or asking for help.CommunitiesJoin research circles organized around shared work.PartnersSee external organizations active around the same topics.

Opportunities

ListingsBrowse roles, calls and collaborations with clearer fit signals.

Account

Log inReturn to your reading and collaboration workspace.Create accountStart saving work, following people and joining teams.
Log inCreate account

Researcher profile

Derek McAuley

Derek McAuley contributes to research discovery and scholarly infrastructure.

ResearcherAffiliation not importedOpen to collaborate
Cryptography and SecurityHuman-Computer InteractionNetworking and Internet Architecturecs.CYMachine Learning

Trust snapshot

Quick read

Trust 19 - UnverifiedVerification L1Unclaimed author
5works
0followers
5topics
4close collaborators

Actions

Decide how to stay connected

Follow researcher0

Identity and collaboration

How to connect with this researcher

Claiming links this public author record to a researcher profile and unlocks direct collaboration workflows.

Log in to claim

Direct collaboration

Open a focused conversation when the fit is right

Claim this author entity first to unlock direct invitations.

Research graph

See the researcher in context

Open full explorer

Inspect adjacent work, topics, institutions and collaborators without jumping out to a separate graph page.

Building this graph slice

BZPEER is loading the nearby papers, people, topics and institutions for this page.

Published work

5 published item(s)

preprint2024arXiv

Locally Differentially Private Embedding Models in Distributed Fraud Prevention Systems

Global financial crime activity is driving demand for machine learning solutions in fraud prevention. However, prevention systems are commonly serviced to financial institutions in isolation, and few provisions exist for data sharing due to fears of unintentional leaks and adversarial attacks. Collaborative learning advances in finance are rare, and it is hard to find real-world insights derived from privacy-preserving data processing systems. In this paper, we present a collaborative deep learning framework for fraud prevention, designed from a privacy standpoint, and awarded at the recent PETs Prize Challenges. We leverage latent embedded representations of varied-length transaction sequences, along with local differential privacy, in order to construct a data release mechanism which can securely inform externally hosted fraud and anomaly detection models. We assess our contribution on two distributed data sets donated by large payment networks, and demonstrate robustness to popular inference-time attacks, along with utility-privacy trade-offs analogous to published work in alternative application domains.

0 citations0 reviewsNo code linkedOpen access
preprint2022arXiv

Human-centred home network security

This chapter draws from across the foregoing chapters discussing many core HDI approaches and disciplinary perspectives to consider the specific application of HDI in home network security. While much work has considered the challenges of securing in home IoT devices and their communications, especially for those with limited power or computational capacity, scant attention has been paid by the research community to home network security, and its acceptability and usability, from the viewpoint of ordinary citizens. It will be clear that we need a radical transformation in our approach to designing domestic networking infrastructure to guard against widespread cyber-attacks that threaten to counter the benefits of the IoT. Our aim has to be to defend against enemies inside the walls, to protect critical functionality in the home against rogue devices and prevent the proliferation of disruptive wide-scale IoT DDOS attacks that are already occurring [1].

0 citations0 reviewsNo code linkedOpen access
preprint2022arXiv

Performance Evaluation for Privacy-preserving Control of Domestic IoT Devices

Most of the existing models for deploying IoT ecosystem involves the vendor being in the loop of the command and control of IoT devices hence users' privacy and security is one of the main challenges. Despite these concerns, users are often faced with a choice between limiting the device functionality or enabling internet access to the IoT devices by signing up to the vendor centralized model in order to access their device from outside their home. In this paper, we argue that although IoT is promising a revolutionary way of offering services to users, most of these devices shouldn't be allowed to have Internet access due to the increased risks to privacy and security. We present an alternative home networking design model which limits the exposure of IoT devices, and enable seamless access to their functionality from outside the home using WireGuard (WG), a state-of-the-art Virtual Private Network (VPN) protocol. We built a test-bed using off-the-shelf IoT devices for testing our proposed network design under various conditions; including access from Home, 4G, Office and Public Wifi networks. We show that our VPN-based remote access to the IoT device offers a better performance in terms of end-to-end delay in all scenarios when using Hypertext Transport Protocol (HTTP) and comparable performance when using double encryption Hypertext Transport Protocol Secure (HTTPS) over the VPN.

0 citations0 reviewsNo code linkedOpen access
preprint2022arXiv

Supporting tangible multi-factor key exchange in households

A common approach to securing end-to-end connectivity between devices on the Internet is to utilise a cloud-based intermediary. With this reliance upon a third-party comes a set of security and privacy concerns that are difficult to mitigate. A promising new protocol, Wireguard, dispenses with the middleman to provide secure peer-to-peer communication. However, support for initial key exchange falls outside Wireguard's scope, making it potentially vulnerable to insecure out-of-band key exchange. The design of secure and usable key exchange methods is challenging, not least in domestic spaces, as they're often characterised by technically naive users in multi-occupancy environments, making them susceptible to insider and passer-by attacks (i.e.: theft, observation attacks, relay and impersonation attacks). We describe and present the results from a design ideation study that probes the use of tangible, multi-factor approaches for securing key exchange in domestic spaces. The study suggests that a home's semi-fixed features (e.g.: lamps, shelves, chairs) can be instrumented to support a promising three-factor authentication approach ('what you have, what you know and where you are') to enable key exchange solutions that are i. more secure than commonly used naive approaches and ii. desirable for end users.

0 citations0 reviewsNo code linkedOpen access
preprint2020arXiv

The perceptions of social and information privacy risks of Inflammatory Bowel Disease patients using social media platforms for health-related support

With hundreds of thousands of individuals using social media to discuss health concerns, sensitive personal data is self-disclosed on these platforms every day. Previous research indicates an understanding of social privacy concerns by patients with chronic illnesses, but there is a lack of understanding in the perception of information privacy concerns. Qualitative interviews were conducted with 38 patients with inflammatory bowel disease (IBD) using social media platforms to engage with online communities. Using thematic analysis, we identified that patients typically demonstrate the privacy and risk dual calculus for perceived social privacy concerns. Patients demonstrate mixed knowledge of what data is collected and how it is used by social media platforms and often described their platform use as a trade-off between the unknown information privacy risks and the therapeutic affordances of engaging with the online community (the privacy calculus). Our findings illustrate the different levels of understanding between social and information privacy and the impacts on how individuals take agency over their personal data. We conclude with the suggestion for future research to further understand the relationship between knowledge, information privacy concerns and mitigating actions in the online health community context.

0 citations0 reviewsNo code linkedOpen access