Carleton Security Research Labs (CCSL+CISL)

About Us

Welcome to the home page of Carleton's security research labs in the School of Computer Science: Carleton Computer Security Lab (CCSL) and Carleton Internet Security Lab (CISL). We research topics involving computer and Internet security, motivated by real-world problems. To pursue the mission of exploring fundamental security issues in networked information systems, the scope of CCSL's research encompasses a variety of areas tackled from a system security perspective. These includ web security, network security, operating system and kernel security, platform security and trusted computing. CISL focuses on understanding and solving security and privacy issues that plague today's Internet. Research in CISL aims to secure the Internet, the networks and systems connected to it (e.g., IoT devices, and Internet-connected autonomous systems), and emerging Internet-based technologies (e.g., SDN, 5G, and LoRa). We perform large-scale Internet measurements to analyze the security and deployability of Internet infrastructures and operations (e.g., TLS, DNSSec, Secure BGP, authentication, and secure geolocation). Consult our Publications page for more information.

Latest News

Jul 15, 2023. Our paper, "Escaping Vendor Mortality: A New Paradigm for Extending IoT Device Longevity" is accepted for publication at NSPW.
Jan 27, 2023. Our papers "Applying Accessibility Metrics to Measure the Threat Landscape for Users with Disabilities" and "Why do Internet Devices Remain Vulnerable? A Survey with System Administrators " are accepted for publication at NDSS MADWeb.
Nov 14, 2022. Our papers "Towards Characterizing IoT Software Update Practices" and "If-This-Then-Allow-That (to Phone Home): A Trigger-Based Network Policy Enforcement Framework for Smart Homes" are accepted for publication at FPS.
Oct 12, 2022. Our paper, "A Hybrid Decision-making Approach to Security Metrics Aggregation in Cloud Environments" is accepted for publication at IEEE CloudCom.
Jun 23, 2022. Our paper, "Certificate Root Stores---An Area of Unity or Disparity?" is accepted for publication at CSET.
Feb 11, 2022. Our paper, "Characterizing the Adoption of Security.txt Files and their Applications to Vulnerability Notification" is accepted for publication at NDSS MADWeb.
Feb 7, 2022. Our paper, "SoK: Password-authenticated key exchange - Theory, practice, standardization and real-world lessons." is accepted for publication at ACM AsiaCCS.
Jan 5, 2022. Muhammad Shafayat Oshman has successfully defended his Master's thesis. Congrats Muhammad!
14 Oct 2021. Springer publishes "Computer Security and the Internet: Tools and Jewels from Malware to Bitcoin", the Second Edition of a book from our lab. See: https://people.scs.carleton.ca/~paulv/toolsjewels.html.

All News

Research Resources

We maintain a repository of research-related resources, such as useful tips, security conference information, internal activities, and software tools we have developed.

Joining CCSL+CISL

We are always looking for strong, committed, and hard working students. If you are passionate about computer security research, and are interested in working with us, fill out this form.