Lorrie Cranor

Last updated
Lorrie Cranor
Born (1971-02-25) February 25, 1971 (age 53)
NationalityAmerican
Other namesLorrie Faith Cranor
Education Montgomery Blair High School 1989
Alma mater Washington University in St. Louis
Employer(s) Carnegie Mellon University, Federal Trade Commission
Known forprivacy and security research, cyberfeminism

Lorrie Faith Cranor is an American academic who is the FORE Systems Professor of Computer Science and Engineering and Public Policy at Carnegie Mellon University, Director and Bosch Distinguished Professor in Security and Privacy Technologies of Carnegie Mellon Cylab [1] , and director of the Carnegie Mellon Usable Privacy and Security Laboratory [2] . She has served as Chief Technologist of the Federal Trade Commission, and she was formerly a member of the Electronic Frontier Foundation Board of Directors. [3] Previously she was a researcher at AT&T Labs-Research [4] and taught in the Stern School of Business at New York University. She has authored over 110 research papers on online privacy, phishing and semantic attacks, spam, electronic voting, anonymous publishing, usable access control, and other topics. [5]

Contents

Early life and education

Cranor was a member of the first class to graduate from the Mathematics, Science, and Computer Science Magnet Program at Montgomery Blair High School in Silver Spring, Maryland. [6] She received a bachelor's degree in Engineering and Public Policy, master's degrees in Technology and Human Affairs, and Computer Science, and a doctorate in Engineering and Policy, all from Washington University in St. Louis. [7]

Career

At CMU, Cranor's research has largely focused on privacy policies and passwords. [8]

Cranor is not only a leading researcher but also a tough critic of the online ad industry's privacy initiatives. In 2008, she blasted Web companies for crafting unreadable privacy policies. She said in a report that online privacy policies take users an average of 10 minutes to read. That report also said that if every U.S. Web user read the privacy policy at every site visited, the time spent reading privacy policies would total an estimated 44.3 billion hours per year. [9]

Cranor led the development of the Platform for Privacy Preferences (P3P) Project at the World Wide Web Consortium and authored the book Web Privacy with P3P. [9] She also led the development of the Privacy Bird P3P user agent and the Privacy Finder P3P search engine.[ citation needed ]

Cranor has played a key role in building the usable privacy and security research community, having co-edited the book Security and Usability (O'Reilly 2005) and founded the Symposium On Usable Privacy and Security (SOUPS). [10]

Cranor is a co-founder of Wombat Security Technologies, Inc and has authored over 150 research papers on online privacy, usable security, and other topics. [10]

She is a member of the feminist collective Deep Lab. [11]

Honors and awards

In 2003, she was named to the MIT Technology Review TR100 as one of the top 100 innovators in the world under the age of 35. [12] [13]

In 2013, Cranor's Security Blanket won Honorable Mention in the International Science & Engineering Visualization Challenge presented by Science and the National Science Foundation. [14] She gave a TEDx talk in March 2014 entitled, "What's Wrong with your pa$$w0rd." [15]

In 2014, she was elected to ACM Fellow For contributions to research and education in usable privacy and security. [16]

In 2016, was named Fellow of the Institute of Electrical and Electronics Engineers (IEEE). [17]

In 2017, she was elected to the CHI Academy. [18] At the same conference, Cranor was awarded a prestigious Best Paper award for her paper titled Design and Evaluation of a Data-Driven Password Meter. [19]

Personal life

Cranor is married to Chuck Cranor, [20] a fellow researcher at Carnegie Mellon University. [21] They have three children together. [21] [22]

Related Research Articles

<span class="mw-page-title-main">Carnegie Mellon University</span> Private research university in Pittsburgh, Pennsylvania, U.S.

Carnegie Mellon University (CMU) is a private research university in Pittsburgh, Pennsylvania. The institution was established in 1900 by Andrew Carnegie as the Carnegie Technical Schools. In 1912, it became the Carnegie Institute of Technology and began granting four-year degrees. In 1967, it became Carnegie Mellon University through its merger with the Mellon Institute of Industrial Research, founded in 1913 by Andrew Mellon and Richard B. Mellon and formerly a part of the University of Pittsburgh.

<span class="mw-page-title-main">Heinz College</span> Public policy school of Carnegie Mellon University

The Heinz College of Information Systems and Public Policy, also known as Heinz College, is the public policy and information college of Carnegie Mellon University in Pittsburgh, Pennsylvania. It consists of the School of Information Systems and Management and the School of Public Policy and Management. The college is named after CMU's former instructor and the later U.S. Senator John Heinz from Pennsylvania.

<span class="mw-page-title-main">Carnegie Mellon School of Computer Science</span> School for computer science in the United States

The School of Computer Science (SCS) at Carnegie Mellon University in Pittsburgh, Pennsylvania, US is a school for computer science established in 1988. It has been consistently ranked among the best computer science programs over the decades. As of 2024 U.S. News & World Report ranks the graduate program as tied for No. 1 with Massachusetts Institute of Technology, Stanford University and University of California, Berkeley.

A privacy policy is a statement or legal document that discloses some or all of the ways a party gathers, uses, discloses, and manages a customer or client's data. Personal information can be anything that can be used to identify an individual, not limited to the person's name, address, date of birth, marital status, contact information, ID issue, and expiry date, financial records, credit information, medical history, where one travels, and intentions to acquire goods and services. In the case of a business, it is often a statement that declares a party's policy on how it collects, stores, and releases personal information it collects. It informs the client what specific information is collected, and whether it is kept confidential, shared with partners, or sold to other firms or enterprises. Privacy policies typically represent a broader, more generalized treatment, as opposed to data use statements, which tend to be more detailed and specific.

The Platform for Privacy Preferences Project (P3P) is an obsolete protocol allowing websites to declare their intended use of information they collect about web browser users. Designed to give users more control of their personal information when browsing, P3P was developed by the World Wide Web Consortium (W3C) and officially recommended on April 16, 2002. Development ceased shortly thereafter and there have been very few implementations of P3P. Internet Explorer and Microsoft Edge were the only major browsers to support P3P. Microsoft has ended support from Windows 10 onwards. Internet Explorer and Edge on Windows 10 no longer support P3P. The president of TRUSTe has stated that P3P has not been implemented widely due to the difficulty and lack of value.

<span class="mw-page-title-main">Carnegie Mellon Silicon Valley</span> Branch campus in California

Carnegie Mellon Silicon Valley is a degree-granting branch campus of Carnegie Mellon University located in Mountain View, California. It was established in 2002 at the NASA Ames Research Center in Moffett Field.

<span class="mw-page-title-main">Steven M. Bellovin</span>

Steven M. Bellovin is a researcher on computer networking and security who has been a professor in the computer science department at Columbia University since 2005. Previously, Bellovin was a fellow at AT&T Labs Research in Florham Park, New Jersey.

The Carnegie Mellon University Usable Privacy and Security Laboratory (CUPS) was established in the Spring of 2004 to bring together Carnegie Mellon University researchers working on a diverse set of projects related to understanding and improving the usability of privacy and security software and systems. The privacy and security research community has become increasingly aware that usability problems severely impact the effectiveness of mechanisms designed to provide security and privacy in software systems. Indeed, one of the four grand research challenges in information security and assurance identified by the Computing Research Association in 2003 is: "Give end-users security controls they can understand and privacy they can control for the dynamic, pervasive computing environments of the future." This is the challenge that CUPS strives to address. CUPS is affiliated with Carnegie Mellon CyLab and has members from the Engineering and Public Policy Department, the School of Computer Science, the Electrical and Computer Engineering Department, the Heinz College, and the Department of Social and Decision Sciences. It is directed by Lorrie Cranor.

Ramayya Krishnan is an Indian American Management and Information technology scholar from Pittsburgh, Pennsylvania. He is the dean of Heinz College, and is the W. W. Cooper and Ruth F. Cooper Professor of Management science and Information systems at Carnegie Mellon University. Krishnan is also a past president of the Institute for Operations Research and Management Science (INFORMS).

<span class="mw-page-title-main">Latanya Sweeney</span> Computer scientist

Latanya Arvette Sweeney is an American computer scientist. She is the Daniel Paul Professor of the Practice of Government and Technology at the Harvard Kennedy School and in the Harvard Faculty of Arts and Sciences at Harvard University. She is the founder and director of the Public Interest Tech Lab, founded in 2021 with a $3 million grant from the Ford Foundation as well as the Data Privacy Lab. She is the current Faculty Dean in Currier House at Harvard.

<span class="mw-page-title-main">Kiron Skinner</span> American academic and former government official (b. 1961)

Kiron Kanina Skinner is a former Director of Policy Planning at the United States Department of State in the Trump administration. Skinner is presently the Taube Professor of International Relations and Politics at the Pepperdine University School of Public Policy, where she teaches graduate courses in national security and public leadership. Prior to that, she was the Taube Professor of International Relations and Politics at Carnegie Mellon University, and the founding director of the Institute for Politics and Strategy and associated centers at the university. She is also the W. Glenn Campbell Research Fellow at the Hoover Institution. After leaving the Department of State, she returned to her position at Carnegie Mellon University until stepping down in 2021.

Deep Lab is a women's collective group composed of artists, researchers, writers, engineers, and cultural producers. These women are involved in critical assessments of contemporary digital culture and, together, work to exploit the potential for creative inquiry lying dormant in the deep web. Outside of Deep Lab, the members engage in activities that range from magazine editing, journalism, various forms of activism, and teaching. The collective's research spans a variety of topics including privacy, code, surveillance, art, social hacking, capitalism, race, anonymity, 21st century infrastructures, and practical skills for real-world applications. Deep Lab draws influence from Experiments in Art and Technology (E.A.T.), Cypherpunks, Guerrilla Girls, Free Art and Technology Lab (F.A.T.), Chaos Computer Club, and Radical Software.

<span class="mw-page-title-main">PACTF</span> Computer security competition

PACTF was an annual web-based computer security Capture the Flag (CTF) competition for middle and high school students. It was founded by a group of students at Phillips Academy in Andover, Massachusetts. The competition's sponsors include the Abbot Academy Association at Phillips Academy; the Information Networking Institute and CyLab at Carnegie Mellon University; the Hariri Institute for Computing, Massachusetts Open Cloud (MOC) project, and Modular Approach to Cloud Security (MACS) project at Boston University; and other entities.

The Carnegie Mellon CyLab Security and Privacy Institute is a computer security research center at Carnegie Mellon University. Founded in 2003 as a university-wide research center, it involves more than 50 faculty and 100 graduate students from different departments and schools within the university. It is "one of the largest university-based cyber security research and education centers in the U.S."

Jessica K. Hodgins is an American roboticist and researcher who is a professor at Carnegie Mellon's Robotics Institute and School of Computer Science. Hodgins is currently also Research Director at the Facebook AI Research lab in Pittsburgh next to Carnegie Mellon. She was elected the president of ACM SIGGRAPH in 2017. Until 2016, she was Vice President of Research at Disney Research and was the Director of the Disney Research labs in Pittsburgh and Los Angeles.

<span class="mw-page-title-main">Chris Harrison (computer scientist)</span> American computer scientist

Chris Harrison is a British-born, American computer scientist and entrepreneur, working in the fields of human–computer interaction, machine learning and sensor-driven interactive systems. He is a professor at Carnegie Mellon University and director of the Future Interfaces Group within the Human–Computer Interaction Institute. He has previously conducted research at AT&T Labs, Microsoft Research, IBM Research and Disney Research. He is also the CTO and co-founder of Qeexo, a machine learning and interaction technology startup.

<span class="mw-page-title-main">Hideto Tomabechi</span> Japanese cognitive scientist and computer scientist

Hideto Tomabechi is a Japanese cognitive scientist computer scientist.

Andrea M. Matwyshyn is an American law professor and engineering professor at The Pennsylvania State University. She is known as a scholar of technology policy, particularly as an expert at the intersection of law and computer security and for her work with government. She is credited with originating the legal and policy concept of the Internet of Bodies.

Cleotilde Gonzalez is a Research Professor of Decision Sciences in the Social and Decision Sciences Department. She is also the Research Co-Director of the National NSF AI Institute for Societal Decision Making and the founding director of the Dynamic decision-making laboratory at Carnegie Mellon University. Gonzalez is also affiliated with the Security and Privacy Institute (CyLab), the Center for Behavioral Decision Research (CBDR), the Human Computer Interaction Institute, the Center for Cognitive Brain Imaging, and the Center for Neural Basis of Cognition.

Robert K. Cunningham is an American computer scientist and engineer. In 2021 he became Vice Chancellor for Research Infrastructure at the University of Pittsburgh. He is a fellow of the Institute of Electrical and Electronics Engineers.

References

  1. "Lorrie Faith Cranor's Home Page". lorrie.cranor.org. Retrieved 2024-06-18.
  2. "CyLab Usable Privacy and Security Lab (CUPS)". cups.cs.cmu.edu. Retrieved 2024-06-18.
  3. Peterson, Andrea (3 December 2015). "The FTC is getting a new chief technologist: Carnegie Mellon's Lorrie Cranor". Washington Post.
  4. Schwartz, John Is Legal Action Against File Swappers Good Business? New York Times , September 15, 2003
  5. "Lorrie Faith Cranor - Google Scholar Citations". Google Scholar. Retrieved 17 September 2014.
  6. Zhou, Xinyi (Winter 2014). "Usable Privacy: Lorrie Faith Cranor '89". Montgomery Blair High School Magnet Foundation. Retrieved 17 September 2014.
  7. "Lorrie Cranor - Carnegie Mellon University Cylab". Carnegie Mellon University. Retrieved 17 September 2014.
  8. Wills, Rick. "CMU professor to become FTC's chief technologist". TribLIVE.com. Retrieved 2018-02-03.
  9. 1 2 "FTC Hires Online Privacy Guru Lorrie Cranor" . Retrieved 2018-02-03.
  10. 1 2 Infratech, SecuObs. "- USENIX Security '15 - Conducting Usable Security Studies It's Complicated SecuObs - L'observatoire de la sécurite internet - Site d'informations professionnelles francophone sur la sécurité informatique". www.secuobs.com. Retrieved 2018-02-03.
  11. "About Us". deeplab.net. Retrieved 27 June 2016.
  12. "2003 Young Innovators Under 35". Technology Review. 2003. Retrieved August 15, 2011.
  13. Lorrie Cranor's biography on Technology Review's 2003 Young Innovators Under 35
  14. "2013 Visualization Challenge". Science. 343 (6171): 600–610. 7 February 2014. Bibcode:2014Sci...343..600.. doi: 10.1126/science.343.6171.600 . PMID   24503833.
  15. "Lorrie Cranor: What's wrong with your pa$$w0rd". ted.com. March 2014.
  16. ACM Fellows 2014
  17. "2016 elevated fellow" (PDF). IEEE Fellows Directory.
  18. "2017 SIGCHI Awards — SIGCHI". Archived from the original on 2017-02-22. Retrieved 2017-02-21.
  19. "Papers".
  20. "Lorrie Faith Cranor's Home Page". lorrie.cranor.org. Retrieved 2017-02-21.
  21. 1 2 "Chuck Cranor's Home Page". chuck.cranor.org. Retrieved 2017-02-21.
  22. "Lorrie Faith Cranor's Short Bio". lorrie.cranor.org. Retrieved 2017-02-21.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.