Shaanan Cohney PhD

Publications

Shaanan's scholarship spans technical and legal scholarship exploring how cryptography, security, and policy intersect in practice. Highlights include work on proctoring, accountable governance, and secure protocol design, alongside impact-focused collaborations with regulators and industry.

Peer Reviewed Papers

“It’s been lovely watching you”: Institutional Decision-Making on Online Proctoring Software. 2025 IEEE Symposium on Security and Privacy (SP) (2025). Elisa Shioji, Ani Meliksetyan, Lucy Simko, Ryan Watkins, Adam Aviv and Shaanan Cohney.

Security & Privacy Law & Policy

@inproceedings{shioji2024s,
  title = {``It's been lovely watching you'': Institutional Decision-Making on
             Online Proctoring Software},
  author = {Shioji, Elisa and Meliksetyan, Ani and Simko, Lucy and Watkins, Ryan and Aviv, Adam and Cohney, Shaanan},
  booktitle = {2025 IEEE Symposium on Security and Privacy (SP)},
  pages = {1--18},
  year = {2025},
  organization = {IEEE Computer Society},
  selected = {yes},
  group = {papers},
  themes = {security|Security & Privacy, law|Law & Policy},
  link = {https://www.lucysimko.com/publications/shioji-proctoring-ieee-sp-25.pdf},
  doi = {10.1109/SP61157.2025.00018}
}

SoK: Trusted setups in cryptography, Financial Cryptography and Data Security, (2025), Faxing Wang, Shaanan Cohney and Joseph Bonneau.

Security & Privacy Cryptography

@article{trustedsetups,
  title = {{SoK: Trusted setups in cryptography}},
  author = {Wang, Faxing and Cohney, Shaanan and Bonneau, Joseph},
  journal = {Financial Cryptography and Data Security},
  year = {2025},
  pages = {1--18},
  selected = {yes},
  group = {papers},
  themes = {security|Security & Privacy, crypto|Cryptography},
  link = {https://eprint.iacr.org/2025/064.pdf}
}

Trailblazer: Practical End-to-end Web API Fuzzing (Registered Report) . Proceedings of the 34th ACM SIGSOFT International Symposium on Software Testing and Analysis (2025). Lianglu Pan, Shaanan Cohney, Toby Murray and Van-Thuan Pham.

Security & Privacy

@inproceedings{pan2025trailblazer,
  title = {Trailblazer: Practical End-to-end Web API Fuzzing (Registered Report)
             },
  author = {Pan, Lianglu and Cohney, Shaanan and Murray, Toby and Pham, Van-Thuan},
  booktitle = {Proceedings of the 34th ACM SIGSOFT International Symposium on
                 Software Testing and Analysis},
  pages = {143--152},
  year = {2025},
  selected = {yes},
  group = {papers},
  themes = {security|Security & Privacy},
  link = {https://dl.acm.org/doi/10.1145/3713081.3731717},
  doi = {10.1145/3713081.3731717}
}

"It’s been lovely watching you": Institutional Decision-Making on Online Proctoring Software. 2025 IEEE Symposium on Security and Privacy (S&P) (2025). Elisa Shioji, Ani Meliksetyan, Ryan Watkins, Adam J. Aviv and Shaanan Cohney.

Security & Privacy Law & Policy

@inproceedings{proctoringexec,
  title = {"It's been lovely watching you": Institutional Decision-Making on Online Proctoring Software},
  author = {Shioji, Elisa and Meliksetyan, Ani and Watkins, Ryan and Aviv, Adam J. and Cohney, Shaanan},
  booktitle = {2025 IEEE Symposium on Security and Privacy (S&P)},
  year = {2025},
  group = {papers},
  themes = {security|Security & Privacy, law|Law & Policy},
  link = {https://www.computer.org/csdl/proceedings-article/sp/2025/223600a018/21B7Q9z8UV2}
}

NOTRY: Deniable messaging with retroactive avowal, PoPETS, (2024), Faxing Wang, Shaanan Cohney, Riad Wahby and Joseph Bonneau. DOI:https://doi.org/10.56553/popets-2024-0056.

Security & Privacy Cryptography

@article{notry,
  title = {NOTRY: Deniable messaging with retroactive avowal},
  author = {Wang, Faxing and Cohney, Shaanan and Wahby, Riad and Bonneau, Joseph},
  booktitle = {PoPETS},
  year = {2024},
  selected = {no},
  group = {papers},
  themes = {security|Security & Privacy, crypto|Cryptography},
  link = {https://eprint.iacr.org/2023/1926.pdf},
  doi = {10.56553/popets-2024-0056}
}

Learning with Style: Improving Student Code-Style Through Better Automated Feedback, 55th ACM Technical Symposium on Computer Science Education, (2024), Liam Saliba, Eduardo Oliveira, Shaanan Cohney and Qi Jianzhong. DOI:https://doi.org/10.1145/3626252.3630889.

Security & Privacy

@article{ccheck,
  title = {Learning with Style: Improving Student Code-Style Through Better
             Automated Feedback},
  author = {Saliba, Liam and Oliveira, Eduardo and Cohney, Shaanan and Jianzhong, Qi},
  year = {2024},
  pages = {1--7},
  booktitle = {55th ACM Technical Symposium on Computer Science Education},
  group = {papers},
  themes = {security|Security & Privacy},
  selected = {no},
  link = {https://doi.org/10.1145/3626252.3630889},
  doi = {10.1145/3626252.3630889}
}

Detecting Excessive Data Exposures in Web Server Responses with Metamorphic Fuzzing, 46th ACM/IEEE International Conference on Software Engineering, (2024), Lianglu Pan, Shaanan Cohney, Toby Murray and Van-Thuan Pham, 🏆 Distinguished Paper Award. DOI:https://doi.org/10.1145/3597503.3608133.

Security & Privacy

@article{edefuzz,
  title = {Detecting Excessive Data Exposures in Web Server Responses with
             Metamorphic Fuzzing},
  author = {Pan, Lianglu and Cohney, Shaanan and Murray, Toby and Pham, Van-Thuan},
  booktitle = {46th ACM/IEEE International Conference on Software Engineering},
  year = {2024},
  selected = {yes},
  pages = {1-14},
  group = {papers},
  themes = {security|Security & Privacy},
  awards = {Distinguished Paper Award.},
  link = {https://dl.acm.org/doi/10.1145/3597503.3608133},
  doi = {10.1145/3597503.3608133}
}

COVID Down Under: where did Australia’s pandemic apps go wrong? 2023 IEEE International Symposium on Ethics in Engineering, Science, and Technology (ETHICS) (2023). Shaanan Cohney and Marc Cheong.

Security & Privacy Law & Policy

@inproceedings{cohney2023covid,
  title = {COVID Down Under: where did Australia's pandemic apps go wrong?},
  author = {Cohney, Shaanan and Cheong, Marc},
  booktitle = {2023 IEEE International Symposium on Ethics in Engineering,
                 Science, and Technology (ETHICS)},
  pages = {1--8},
  year = {2023},
  organization = {IEEE},
  group = {papers},
  themes = {security|Security & Privacy, law|Law & Policy},
  link = {https://arxiv.org/pdf/2212.12178.pdf},
  doi = {10.1109/ETHICS57328.2023.10154912}
}

Watching the watchers: bias and vulnerability in remote proctoring software, 31st USENIX Security Symposium (USENIX Security 22), (2022), Ben Burgess, Avi Ginsberg, Edward W Felten and Shaanan Cohney. DOI:https://doi.org/10.48550/arXiv.2205.03009.

Security & Privacy Law & Policy

@article{watchers,
  title = {Watching the watchers: bias and vulnerability in remote proctoring
             software},
  author = {Burgess, Ben and Ginsberg, Avi and Felten, Edward W and Cohney, Shaanan},
  booktitle = {31st USENIX Security Symposium (USENIX Security 22)},
  year = {2022},
  selected = {yes},
  group = {papers},
  themes = {security|Security & Privacy, law|Law & Policy},
  pages = {571--588},
  link = {https://www.usenix.org/system/files/sec22-burgess.pdf},
  doi = {10.48550/arXiv.2205.03009}
}

Virtual Classrooms and Real Harms: Remote Learning at {US}. Universities, Seventeenth Symposium on Usable Privacy and Security (SOUPS 2021) , (2021), Shaanan Cohney, Ross Teixeira, Anne Kohlbrenner, Arvind Narayanan, Mihir Kshirsagar, Yan Shvartzshnaider and Madelyn Sanfilippo. DOI:https://doi.org/10.48550/arXiv.2012.05867.

Security & Privacy Law & Policy

@article{virtual,
  title = {Virtual Classrooms and Real Harms: Remote Learning at $\{$US$\}$.
             Universities},
  author = {Cohney, Shaanan and Teixeira, Ross and Kohlbrenner, Anne and Narayanan, Arvind and Kshirsagar, Mihir and Shvartzshnaider, Yan and Sanfilippo, Madelyn},
  booktitle = {Seventeenth Symposium on Usable Privacy and Security (SOUPS 2021)
                 },
  pages = {653--674},
  year = {2021},
  selected = {no},
  group = {papers},
  themes = {security|Security & Privacy, law|Law & Policy},
  link = {https://www.usenix.org/system/files/soups2021-cohney.pdf},
  doi = {10.48550/arXiv.2012.05867}
}

Pseudorandom black swans: Cache attacks on CTR_DRBG, 2020 IEEE Symposium on Security and Privacy (S&P), (2020), Shaanan Cohney, Andrew Kwong, Shahar Paz, Daniel Genkin, Nadia Heninger, Eyal Ronen and Yuval Yarom. DOI:https://doi.org/10.1109/SP40000.2020.00046.

Security & Privacy Cryptography

@article{blackswans,
  title = {Pseudorandom black swans: Cache attacks on CTR\_DRBG},
  author = {Cohney, Shaanan and Kwong, Andrew and Paz, Shahar and Genkin, Daniel and Heninger, Nadia and Ronen, Eyal and Yarom, Yuval},
  booktitle = {2020 IEEE Symposium on Security and Privacy (S\&P)},
  pages = {1241--1258},
  year = {2020},
  organization = {IEEE},
  selected = {no},
  group = {papers},
  themes = {security|Security & Privacy, crypto|Cryptography},
  link = {https://ieeexplore.ieee.org/iel7/9144328/9152199/09152663.pdf},
  doi = {10.1109/SP40000.2020.00046}
}

Practical state recovery attacks against legacy RNG implementations, Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, (2018), Shaanan Cohney, Matthew D Green and Nadia Heninger. DOI:https://doi.org/10.1145/3243734.3243756.

Security & Privacy Cryptography

@article{duhk,
  title = {Practical state recovery attacks against legacy RNG implementations},
  author = {Cohney, Shaanan and Green, Matthew D and Heninger, Nadia},
  booktitle = {Proceedings of the 2018 ACM SIGSAC Conference on Computer and
                 Communications Security},
  pages = {265--280},
  year = {2018},
  selected = {no},
  group = {papers},
  themes = {security|Security & Privacy, crypto|Cryptography},
  link = {https://dl.acm.org/doi/pdf/10.1145/3243734.3243756},
  doi = {10.1145/3243734.3243756}
}

Measuring small subgroup attacks against Diffie-Hellman, NDSS, (2016), Luke Valenta, David Adrian, Antonio Sanso, Shaanan Cohney, Joshua Fried, Marcella Hastings, J Alex Halderman and Nadia Heninger. DOI:https://doi.org/10.14722/ndss.2017.23171.

Security & Privacy Cryptography

@article{subgroup,
  title = {Measuring small subgroup attacks against Diffie-Hellman},
  author = {Valenta, Luke and Adrian, David and Sanso, Antonio and Cohney, Shaanan and Fried, Joshua and Hastings, Marcella and Halderman, J Alex and Heninger, Nadia},
  journal = {NDSS},
  year = {2016},
  selected = {no},
  group = {papers},
  themes = {security|Security & Privacy, crypto|Cryptography},
  pages = {1--15},
  link = {https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017_04A-1_Valenta_paper_0.pdf},
  doi = {10.14722/ndss.2017.23171}
}

Factoring as a service, International Conference on Financial Cryptography and Data Security, (2016), Luke Valenta, Shaanan Cohney, Alex Liao, Joshua Fried, Satya Bodduluri and Nadia Heninger. DOI:https://doi.org/10.1007/978-3-662-54970-4_19.

Security & Privacy Cryptography

@article{faas,
  title = {Factoring as a service},
  author = {Valenta, Luke and Cohney, Shaanan and Liao, Alex and Fried, Joshua and Bodduluri, Satya and Heninger, Nadia},
  booktitle = {International Conference on Financial Cryptography and Data
                 Security},
  pages = {321--338},
  year = {2016},
  organization = {Springer},
  selected = {no},
  group = {papers},
  themes = {security|Security & Privacy, crypto|Cryptography},
  link = {https://link.springer.com/chapter/10.1007/978-3-662-54970-4_19},
  doi = {10.1007/978-3-662-54970-4_19}
}

{DROWN}: Breaking {TLS} Using {SSLv2}, 25th USENIX Security Symposium (USENIX Security 16), (2016), Nimrod Aviram, Sebastian Schinzel, Juraj Somorovsky, Nadia Heninger, Maik Dankel, Jens Steube, Luke Valenta, David Adrian, J Alex Halderman, Viktor Dukhovni, Emilia Käsper, Shaanan Cohney, Susanne Engels, Christof Paar and Yuval Shavitt, 🏆 Runner-Up, Internet Defense Prize.

Security & Privacy Cryptography

@article{drown,
  title = {$\{$DROWN$\}$: Breaking $\{$TLS$\}$ Using $\{$SSLv2$\}$},
  author = {Aviram, Nimrod and Schinzel, Sebastian and Somorovsky, Juraj and Heninger, Nadia and Dankel, Maik and Steube, Jens and Valenta, Luke and Adrian, David and Halderman, J Alex and Dukhovni, Viktor and Käsper, Emilia and Cohney, Shaanan and Engels, Susanne and Paar, Christof and Shavitt, Yuval},
  booktitle = {25th USENIX Security Symposium (USENIX Security 16)},
  pages = {689--706},
  year = {2016},
  selected = {no},
  group = {papers},
  themes = {security|Security & Privacy, crypto|Cryptography},
  link = {https://drownattack.com/drown-attack-paper.pdf},
  awards = {Runner-Up, Internet Defense Prize}
}

A systematic analysis of the Juniper Dual EC incident, Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, (2016), Stephen Checkoway, Jacob Maskiewicz, Christina Garman, Joshua Fried, Shaanan Cohney, Matthew Green, Nadia Heninger, Ralf-Philipp Weinmann, Eric Rescorla and Hovav Shacham, 🏆 Best Paper Award. DOI:https://doi.org/10.1145/2976749.2978395.

Security & Privacy Cryptography

@article{juniper,
  title = {A systematic analysis of the Juniper Dual EC incident},
  author = {Checkoway, Stephen and Maskiewicz, Jacob and Garman, Christina and Fried, Joshua and Cohney, Shaanan and Green, Matthew and Heninger, Nadia and Weinmann, Ralf-Philipp and Rescorla, Eric and Shacham, Hovav},
  booktitle = {Proceedings of the 2016 ACM SIGSAC Conference on Computer and
                 Communications Security},
  pages = {468--479},
  year = {2016},
  selected = {yes},
  group = {papers},
  themes = {security|Security & Privacy, crypto|Cryptography},
  link = {https://dl.acm.org/doi/10.1145/2976749.2978395},
  awards = {Best Paper Award},
  doi = {10.1145/2976749.2978395}
}

Law Review Articles

Transactional scripts in contract stacks, Minn. L. Rev., (2020), Shaanan Cohney and David A Hoffman. DOI:https://doi.org/10.2139/ssrn.3523515.

Law & Policy

@article{scripts,
  title = {Transactional scripts in contract stacks},
  author = {Cohney, Shaanan and Hoffman, David A},
  journal = {Minn. L. Rev.},
  volume = {105},
  pages = {319--388},
  year = {2020},
  publisher = {HeinOnline},
  selected = {no},
  group = {lawreviews},
  themes = {law|Law & Policy},
  link = {https://papers.ssrn.com/sol3/papers.cfm?abstract_id=3523515},
  doi = {10.2139/ssrn.3523515}
}

Coin-operated capitalism, Columbia Law Review, 3 (2019), Shaanan Cohney, David Hoffman, Jeremy Sklaroff and David Wishnick. DOI:https://doi.org/10.2139/ssrn.3215345.

Law & Policy

@article{coc,
  title = {Coin-operated capitalism},
  author = {Cohney, Shaanan and Hoffman, David and Sklaroff, Jeremy and Wishnick, David},
  journal = {Columbia Law Review},
  volume = {119},
  number = {3},
  pages = {591--676},
  year = {2019},
  publisher = {JSTOR},
  selected = {yes},
  group = {lawreviews},
  themes = {law|Law & Policy},
  link = {https://papers.ssrn.com/sol3/papers.cfm?abstract_id=3215345},
  doi = {10.2139/ssrn.3215345}
}

Journal Articles

Where did i leave my keys? Lessons from the juniper dual ec incident, Communications of the ACM, 11 (2018), Stephen Checkoway, Jacob Maskiewicz, Christina Garman, Joshua Fried, Shaanan Cohney, Matthew Green, Nadia Heninger, Ralf-Philipp Weinmann, Eric Rescorla and Hovav Shacham. DOI:https://doi.org/10.1145/3266291.

Security & Privacy Cryptography

@article{checkoway2018did,
  title = {Where did i leave my keys? Lessons from the juniper dual ec incident},
  author = {Checkoway, Stephen and Maskiewicz, Jacob and Garman, Christina and Fried, Joshua and Cohney, Shaanan and Green, Matthew and Heninger, Nadia and Weinmann, Ralf-Philipp and Rescorla, Eric and Shacham, Hovav},
  journal = {Communications of the ACM},
  volume = {61},
  number = {11},
  pages = {148--155},
  year = {2018},
  publisher = {ACM New York, NY, USA},
  selected = {no},
  group = {journals},
  themes = {security|Security & Privacy, crypto|Cryptography},
  link = {https://dl.acm.org/doi/10.1145/3266291},
  doi = {10.1145/3266291}
}

Policy Submissions

Submission to the Education and Workforce Committee: Inquiry into the harm young New Zealanders encounter online, and the roles that Government, business, and society should play in addressing those harms. New Zealand Parliament, Education and Workforce Committee. Shaanan Cohney, Sarah Scheffler, Madelyne Xiao and Lena Habtu. (2025).

Law & Policy

@misc{cohney2025nzinquiryonlineharms,
  author = {Cohney, Shaanan and Scheffler, Sarah and Xiao, Madelyne and Habtu, Lena},
  title = {Submission to the Education and Workforce Committee: Inquiry into the harm young New Zealanders encounter online, and the roles that Government, business, and society should play in addressing those harms},
  type = {Submission},
  institution = {New Zealand Parliament, Education and Workforce Committee},
  address = {Wellington, New Zealand},
  year = {2025},
  link = {https://www.parliament.nz/resource/en-NZ/54SCEDUW_EVI_8611cb90-f850-4b63-6bf5-08dda3e61931_EDUW6408/77f23f68e6861bb2b9381e7bd9f021319bb61e9f},
  pages = {1--11},
  urldate = {2025-08-26},
  note = {Primary author: Shaanan Cohney},
  group = {policy},
  themes = {law|Law & Policy}
}

Submission to Senate Inquiry: Online Safety Amendment (Social Media Minimum Age) Bill 2024. Submission 272 to the Senate Environment and Communications Legislation Committee. Benjamin I. P. Rubinstein, Olga Ohrimenko, Andrew C. Cullen, Shaanan Cohney, Chris Culnane, Toby Murray, Marc Cheong, Thuan Pham and Xingliang Yuan. (Nov. 2024).

Law & Policy

@misc{smma2024senate,
  title = {Submission to Senate Inquiry: Online Safety Amendment (Social Media
             Minimum Age) Bill 2024},
  author = {Rubinstein, Benjamin I. P. and Ohrimenko, Olga and Cullen, Andrew C. and Cohney, Shaanan and Culnane, Chris and Murray, Toby and Cheong, Marc and Pham, Thuan and Yuan, Xingliang},
  year = {2024},
  month = nov,
  pages = {1--2},
  howpublished = {Submission 272 to the Senate Environment and Communications
                    Legislation Committee},
  organization = {Cybersecurity Research Group, University of Melbourne},
  group = {policy},
  themes = {law|Law & Policy},
  link = {https://www.aph.gov.au/DocumentStore.ashx?id=3f3d60bb-3c53-4757-a81c-2f9a0aa348eb&subId=773513}
}

Submission to Senate Inquiry, Online Safety Amendment (Social Media Minimum Age) Bill 2024. Benjamin I. P. Rubinstein, Olga Ohrimenko, Andrew C. Cullen, Shaanan Cohney, Chris Culnane, Toby Murray, Marc Cheong, Thuan Pham and Xingliang Yuan. (Nov. 2024).

Law & Policy

@misc{cybersecuritygroup2024,
  title = {Submission to Senate Inquiry, Online Safety Amendment (Social Media Minimum Age) Bill 2024},
  author = {Rubinstein, Benjamin I. P. and Ohrimenko, Olga and Cullen, Andrew C. and Cohney, Shaanan and Culnane, Chris and Murray, Toby and Cheong, Marc and Pham, Thuan and Yuan, Xingliang},
  year = {2024},
  month = nov,
  group = {policy},
  themes = {law|Law & Policy},
  link = {https://www.aph.gov.au/DocumentStore.ashx?id=3f3d60bb-3c53-4757-a81c-2f9a0aa348eb&subId=773513}
}

Safe and responsible AI in Australia, Discussion Paper Response. Jeanie Marie Paterson, Shaanan Cohney, Liz Sonenberg, Fahimeh Abedi, Marc Cheong, Carmelina Contarino, Joe Brailsford, Tom Drummond, Liam Harding, Eduard Hovy, Christine de Kock, Brian Martin, Aidan McLoughney, Olga Ohrimenko, Sarita Rosenstock, Ben Rubinstein and Michael Wildenauer. (2023).

Law & Policy

@misc{paterson2023safe,
  title = {Safe and responsible AI in Australia, Discussion Paper Response},
  author = {Paterson, Jeanie Marie and Cohney, Shaanan and Sonenberg, Liz and Abedi, Fahimeh and Cheong, Marc and Contarino, Carmelina and Brailsford, Joe and Drummond, Tom and Harding, Liam and Hovy, Eduard and de Kock, Christine and Martin, Brian and McLoughney, Aidan and Ohrimenko, Olga and Rosenstock, Sarita and Rubinstein, Ben and Wildenauer, Michael},
  year = {2023},
  pages = {1--15},
  group = {policy},
  themes = {law|Law & Policy},
  link = {https://www.unimelb.edu.au/__data/assets/pdf_file/0008/4733072/CIS-and-CAIDE-Supporting-Responsible-AI.pdf}
}

Submission to Inform Government Response to Privacy Act Review Report . Shaanan Cohney, Chris Culnane, Liam Harding, Toby Murray, Olga Ohrimenko and Benjamin I.P. Rubinstein. (2023).

Law & Policy

@misc{submission2023inform,
  title = {Submission to Inform Government Response to Privacy Act Review Report
             },
  author = {Cohney, Shaanan and Culnane, Chris and Harding, Liam and Murray, Toby and Ohrimenko, Olga and Rubinstein, Benjamin I.P.},
  year = {2023},
  pages = {1--11},
  group = {policy},
  themes = {law|Law & Policy},
  link = {https://cohney.info/static/papers/privactact-cis.pdf}
}

Addressing Big Tech Regulation in Australia. Shaanan Cohney, Liam Harding, Gabby Bush, Marc Cheong, Tatiana Cutts, Liam Harding, Toby Murray, Suelette Dreyfus and Sarita Rosenstock. (2023).

Law & Policy

@misc{senate,
  author = {Cohney, Shaanan and Harding, Liam and Bush, Gabby and Cheong, Marc and Cutts, Tatiana and Harding, Liam and Murray, Toby and Dreyfus, Suelette and Rosenstock, Sarita},
  title = {Addressing Big Tech Regulation in Australia},
  year = {2023},
  selected = {no},
  group = {policy},
  themes = {law|Law & Policy},
  pages = {1--16},
  link = {https://www.unimelb.edu.au/__data/assets/pdf_file/0010/4508956/caide-reponse-to-senate-inquiry.pdf}
}

Strengthening Australian Consumer Protection in the era of Digital Platforms. Shaanan Cohney, Liam Harding and Suelette Dreyfus. (2023).

Law & Policy

@misc{accc,
  author = {Cohney, Shaanan and Harding, Liam and Dreyfus, Suelette},
  title = {Strengthening Australian Consumer Protection in the era of Digital
             Platforms},
  year = {2023},
  selected = {no},
  group = {policy},
  themes = {law|Law & Policy},
  pages = {1--20},
  link = {https://cohney.info/static/papers/response-to-accc.pdf}
}

Submission in Response to the 2023-2030 Australian Cyber Security Strategy Discussion Paper. Atif Ahmad, Shaanan Cohney, Suelette Dreyfus, Sarah Erfani, Liam Harding, Christopher Leckie, Sean Maynard, Toby Murray, Olga Ohrimenko, Adrian Pearce and Benjamin I.P. Rubinstein. (2023).

Security & Privacy Law & Policy

@misc{australiancyber,
  title = {Submission in Response to the 2023-2030 Australian Cyber Security
             Strategy Discussion Paper},
  author = {Ahmad, Atif and Cohney, Shaanan and Dreyfus, Suelette and Erfani, Sarah and Harding, Liam and Leckie, Christopher and Maynard, Sean and Murray, Toby and Ohrimenko, Olga and Pearce, Adrian and Rubinstein, Benjamin I.P.},
  year = {2023},
  pages = {1--10},
  group = {policy},
  themes = {security|Security & Privacy, law|Law & Policy},
  link = {https://www.homeaffairs.gov.au/reports-and-pubs/PDFs/2023-2030-aus-cyber-security-strategy-discussion-paper/School-of-Computing-and-Information-Systems-University-of-Melbourne-submission.PDF}
}

Submission to ANPR R111004 Commercial Surveillance. Nia Brazzell, Jordan Bresinger, Shaanan Cohney, Sayash Kapoor, Mhir Kshirsagar, Jonathan Mayer and Arvind Narayanan. (2022).

Law & Policy

@misc{surveillance,
  author = {Brazzell, Nia and Bresinger, Jordan and Cohney, Shaanan and Kapoor, Sayash and Kshirsagar, Mhir and Mayer, Jonathan and Narayanan, Arvind},
  title = {Submission to ANPR R111004 Commercial Surveillance},
  year = {2022},
  selected = {yes},
  group = {policy},
  themes = {law|Law & Policy},
  pages = {1--12},
  link = {https://downloads.regulations.gov/FTC-2022-0053-1205/attachment_1.pdf}
}

Submission to the ACCC’s Digital Platform Services Inquiry Discussion Paper. Jeannie Paterson, Shaanan Cohney, Gabby Bush, Liam Harding and Alex Paterson. (2022).

Law & Policy

@misc{digitalplatforms,
  author = {Paterson, Jeannie and Cohney, Shaanan and Bush, Gabby and Harding, Liam and Paterson, Alex},
  title = {Submission to the ACCC's Digital Platform Services Inquiry Discussion
             Paper},
  year = {2022},
  selected = {no},
  group = {policy},
  themes = {law|Law & Policy},
  pages = {1-6},
  link = {https://www.accc.gov.au/system/files/Centre%20for%20AI%20and%20Digital%20Ethics%20and%20Melbourne%20Law%20School.pdf}
}

Response to the Review of the Privacy Act. Jeannie Paterson, Shaanan Cohney, Lars Kulik and Liam Harding. (2022).

Law & Policy

@misc{privacyact,
  author = {Paterson, Jeannie and Cohney, Shaanan and Kulik, Lars and Harding, Liam},
  title = {Response to the Review of the Privacy Act},
  year = {2022},
  selected = {no},
  group = {policy},
  themes = {law|Law & Policy},
  pages = {1-9},
  link = {https://www.unimelb.edu.au/__data/assets/pdf_file/0019/4070503/Privacy-Act-Review-Discussion-Paper-Response.pdf}
}

Strengthening Australia’s cybersecurity regulations and incentives: Response to the Department of Home Affairs Discussion Paper. Amit Achrekar, Atif Ahmad, Shanton Chang, Shaanan Cohney, Suelette Dreyfus, Chris Leckie, Toby Murray, Jeannie Paterson, Thuan Pham and Liz Sonenberg. (2021).

Security & Privacy Law & Policy

@misc{securitypaper,
  author = {Achrekar, Amit and Ahmad, Atif and Chang, Shanton and Cohney, Shaanan and Dreyfus, Suelette and Leckie, Chris and Murray, Toby and Paterson, Jeannie and Pham, Thuan and Sonenberg, Liz},
  title = {Strengthening Australia's cybersecurity regulations and incentives:
             Response to the Department of Home Affairs Discussion Paper},
  year = {2021},
  selected = {no},
  group = {policy},
  themes = {security|Security & Privacy, law|Law & Policy},
  pages = {1--16},
  link = {https://about.unimelb.edu.au/__data/assets/pdf_file/0028/296074/Submission-to-Strengthening-Cybersecurity-Regulations-consultation_University-of-Melbourne.pdf}
}

Comments on Revised Proposed Regulations Implementing the California Consumer Privacy Act. Marshini Chetty, Shaanan Cohney, Mihir Kshirsagar, Arunesh Mathur, Jonathan Mayer, Arvind Narayanan, Ross Teixeira and Ari Ezra Waldman. (2020).

Law & Policy

@misc{ccpa,
  author = {Chetty, Marshini and Cohney, Shaanan and Kshirsagar, Mihir and Mathur, Arunesh and Mayer, Jonathan and Narayanan, Arvind and Teixeira, Ross and Waldman, Ari Ezra},
  title = {Comments on Revised Proposed Regulations Implementing the California
             Consumer Privacy Act},
  year = {2020},
  selected = {no},
  group = {policy},
  themes = {law|Law & Policy},
  pages = {1--8},
  link = {https://citpsite.s3.amazonaws.com/wp-content/uploads/2020/02/27164209/CITP-Clinic-CCPA-Comments-2.pdf}
}

Forthcoming & In Press

Beyond Client-Side Scanning: Cryptographic Protocols for Server-Side Content Moderation. Shangqi Lai, Xingliang Yuan, Shaanan Cohney, Faxing Wang and Qi Li. (2024).

Security & Privacy Cryptography

@misc{CSS,
  title = {Beyond Client-Side Scanning: Cryptographic Protocols for Server-Side Content Moderation},
  author = {Lai, Shangqi and Yuan, Xingliang and Cohney, Shaanan and Wang, Faxing and Li, Qi},
  year = {2024},
  group = {forthcoming},
  themes = {security|Security & Privacy, crypto|Cryptography},
  note = {Submitted to a flagship security conference}
}

SoK: Trusted setups in cryptography. Faxing Wang, Shaanan Cohney and Joseph Bonneau. (2024).

Cryptography

@misc{Wang-Cohney-Bonneau:2024:TrustedSetups,
  title = {SoK: Trusted setups in cryptography},
  author = {Wang, Faxing and Cohney, Shaanan and Bonneau, Joseph},
  year = {2024},
  group = {forthcoming},
  themes = {crypto|Cryptography},
  note = {Submitted to a flagship security conference}
}

No More Corporate Law? Shaanan Cohney and Hui Chia. (2024).

Law & Policy

@misc{nomorelaw,
  title = {No More Corporate Law?},
  author = {Cohney, Shaanan and Chia, Hui},
  year = {2024},
  group = {forthcoming},
  themes = {law|Law & Policy},
  note = {Presented at Non-Archival Law Workshop}
}

Trailblazer: Practical End-to-end Web API Fuzzing. Lianglu Pan, Shaanan Cohney, Toby Murray and Van-Thuan Pham. (2024).

Security & Privacy

@misc{trailblazer,
  title = {Trailblazer: Practical End-to-end Web API Fuzzing},
  author = {Pan, Lianglu and Cohney, Shaanan and Murray, Toby and Pham, Van-Thuan},
  year = {2024},
  group = {forthcoming},
  themes = {security|Security & Privacy},
  note = {Submitted to a flagship software engineering conference}
}

Tutorials & Tools

A Gentle Tutorial for Lattice-Based Cryptanalysis. Joseph Surin and Shaanan Cohney. (2022).

Cryptography

@misc{latticetoolkit,
  author = {Surin, Joseph and Cohney, Shaanan},
  title = {A Gentle Tutorial for Lattice-Based Cryptanalysis},
  year = {2022},
  selected = {yes},
  pages = {1--33},
  group = {tutorials},
  themes = {crypto|Cryptography},
  preprint = {https://eprint.iacr.org/2023/032},
  impact = {While published informally, this paper is now used widely in the CTF
              community as a primer for lattice-based cryptanalysis, and for
              students, e.g., [slides](https://sacworkshop.org/SAC24/slides/Kacsmar_talk.pdf)}
}

Patents

System and Method for Detecting Excessive Data Exposures. Australian Provisional Patent 2022903182. Lianglu Pan, Toby Murray, Thuan Pham and Shaanan Cohney. (2022).

Security & Privacy

@misc{patent,
  author = {Pan, Lianglu and Murray, Toby and Pham, Thuan and Cohney, Shaanan},
  title = {System and Method for Detecting Excessive Data Exposures},
  year = {2022},
  howpublished = {Australian Provisional Patent 2022903182},
  selected = {no},
  pages = {1--53},
  group = {patents},
  themes = {security|Security & Privacy},
  link = {https://ipsearch.ipaustralia.gov.au/patents/2022903182}
}

Writing & Commentary

Singing the virtues of cyber security. Cyber Australia. Suelette Dreyfus and Shaanan Cohney. (2023).

@misc{Dreyfus-Cohney:2023:CyberSec,
  title = {Singing the virtues of cyber security},
  author = {Dreyfus, Suelette and Cohney, Shaanan},
  howpublished = {Cyber Australia},
  year = {2023},
  selected = {no},
  group = {writings},
  link = {https://www.aisa.org.au/Public/Public/Events/Conferences/2023/Singing_the_Virtues_of_Cyber_Security.aspx}
}

The Splendour of Cybersecurity. Pursuit Magazine. Suelette Dreyfus and Shaanan Cohney. (2023).

@misc{Dreyfus-Cohney:2023:CyberSecSplendour,
  title = {The Splendour of Cybersecurity},
  author = {Dreyfus, Suelette and Cohney, Shaanan},
  howpublished = {Pursuit Magazine},
  year = {2023},
  note = {Photography and Text!},
  selected = {no},
  group = {writings},
  link = {https://pursuit.unimelb.edu.au/articles/the-splendour-of-cybersecurity}
}

AI Apocalypse or Overblown Hype? Pursuit Magazine. Simon Coghlan and Shaanan Cohney. (2023).

@misc{Coghlan-Cohney:2023:AIApocalypse,
  title = {AI Apocalypse or Overblown Hype?},
  author = {Coghlan, Simon and Cohney, Shaanan},
  howpublished = {Pursuit Magazine},
  year = {2023},
  selected = {no},
  group = {writings},
  link = {https://pursuit.unimelb.edu.au/articles/ai-apocalypse-or-overblown-hype}
}

Unis are using artificial intelligence to keep students sitting exams honest. But this creates its own problems. The Conversation. Simon Coghlan, Jeannie Patterson, Shaanan Cohney and Tim Miller. (2021).

@misc{Coghlan-etal:2021:AIExamHonesty,
  title = {Unis are using artificial intelligence to keep students sitting exams honest. But this creates its own problems},
  author = {Coghlan, Simon and Patterson, Jeannie and Cohney, Shaanan and Miller, Tim},
  howpublished = {The Conversation},
  year = {2021},
  selected = {no},
  group = {writings},
  link = {https://theconversation.com/unis-are-using-artificial-intelligence-to-keep-students-sitting-exams-honest-but-this-creates-its-own-problems-170708}
}

The Problematic Role of Computer Code in Initial Coin Offerings. CLS Blue Sky: Columbia Law School Blog on Corporations and Capital Markets. Shaanan Cohney, David A. Hoffman, Jeremy Sklaroff and David A. Wishnick. (Aug. 2018).

@misc{Cohney-etal:2018:ICOCodeProblem,
  title = {The Problematic Role of Computer Code in Initial Coin Offerings},
  author = {Cohney, Shaanan and Hoffman, David A. and Sklaroff, Jeremy and Wishnick, David A.},
  howpublished = {CLS Blue Sky: Columbia Law School Blog on Corporations and Capital Markets},
  year = {2018},
  month = aug,
  selected = {no},
  group = {writings},
  link = {https://clsbluesky.law.columbia.edu/2018/08/16/the-problematic-role-of-computer-code-in-initial-coin-offerings/}
}

Shaanan Cohney

Ph.D. M.L. M.S.E.

shaanan[at]cohney.info

Publications

Peer Reviewed Papers

Law Review Articles

Journal Articles

Policy Submissions

Forthcoming & In Press

Tutorials & Tools

Patents

Writing & Commentary