Uncategorized

We are thrilled to share that Md Mojibur Rahman Redoy Akanda, a PhD student in the SPIES Lab, has won the Graduate Research Excellence Award 2026, presented at the Computer Science and Engineering Department’s annual banquet. This is the highest honor for PhD students conducting exceptional research across the department.

Congratulations! Akanda’s work, especially at the intersection of security and accessibility, is very unique and much needed, and he will be coming up on the tenure-track market in the next year’s cycle. 

Please learn more about his work and achievements on his LinkedIn profile or directly via his website: https://redoyakanda.github.io/.

Comparing a Store-less Password Manager with Traditional Password-Only Authentication
Mohammed Jubur, Maliheh Shirvanian,  Salahaldeen Duraibi and Nitesh Saxena
In IEEE Internet Computing, 2026.

Exciting news! An MS Cybersecurity degree from the Computer Science and Engineering at TAMU is coming out soon, we cautiously anticipate, in Fall 2026 (pending state level approvals). This will be a great enabler for our students, the state of Texas and the nation as whole. 

This is the third MS Cybersecurity degree program that Dr. Saxena has helped architect and launch (working together with the department leadership and other cybersecurity faculty). Starting from the MS Cybersecurity at NYU Tandon (launched 2009; co-directed until 2011) and followed by the MS Cybersecurity at UAB (launched 2013; co-directed until 2021). Both programs have been very successful for years. The UAB’s program, ranked as the top graduate program in cybersecurity by Fortune in 2021, was/is also the cornerstone of the NSF-funded SFS CyberCorps program that Dr. Saxena designed and led (from 2017 to 2021).

The SPIES lab led by Dr. Saxena takes immense pride in this continuous journey to innovate in education and incessantly serve students in an area of national importance.

https://www.kbtx.com/2026/02/03/texas-am-board-regents-could-approve-new-programs-across-university-system/

TrackAR: AR/VR Device Fingerprinting and User-Device Pairing Detection via Shared Motion Sensor Data
Tanvir Ahmed Mahdad, Md Shahidur Rahman and Nitesh Saxena
In the 19th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec), June-July 2026.

SPIES Research Lab’s study, led by Kalyan Nakka, Jimmy Dani and Nitesh Saxena, has been cited in a major South Korean news coverage, featuring a significant AI security incident of LG Uplus’s popular AI calling app “ixi-O”. Our study on the trust and ethics gap in Small Language Models (SLMs) applied to on-device AI, has revealed that SLMs have “much lower reliability than server-based SLMs” and pose “greater risk of leaking personal information”. These findings proved prescient, when “ixi-O” app, promoted as strong on security due to on-device AI, has experienced a data breach affecting dozens of users in South Korea, emphasizing our study’s privacy concerns in on-device AI systems and their real-world impact.

 

Link: https://biz.chosun.com/en/en-it/2025/12/09/LYNFHR3PKJAVDHXP4LWOBIHHXQ/

Read More: arXiv

 

The Texas A&M University College of Engineering highlighted SPIES Lab’s browser fingerprinting research, emphasizing how websites are stealthily using browser fingerprinting to track users online. The study shows that clearing cookies provides a false sense of security, as websites link unique device signatures to advertising behavior in real time to track users invisibly. To combat this, we developed the FPTrace framework that exposes fingerprint-based tracking practices even under current privacy regulations like GDPR and CCPA.

Links:
1. YouTube
2. TAMU College of Engineering (LinkedIn Post)

• LiteLMGuard: Seamless and Lightweight On-Device Guardrails for Small Language Models against Quantization Vulnerabilities
  Kalyan Nakka, Jimmy Dani, Ausmit Mondal, Nitesh Saxena
  In the International Joint Conference on Natural Language Processing & Asia-Pacific Chapter of the Association for Computational Linguistics (IJCNLP-AACL) Findings, December 2025
  [pdf]

We are delighted to share that our paper, “Harnessing Vital Sign Vibration Harmonics for Effortless and Inbuilt XR User Authentication,” has received the Distinguished Paper Award at the ACM Conference on Computer and Communications Security (CCS) 2025.

This recognition highlights the impact and innovation of our collaborative work, which introduces a novel authentication mechanism leveraging vibration harmonics derived from users’ vital signs within extended reality (XR) systems to enable continuous, effortless, and built-in user verification.

The acceptance rate for CCS 2025 was 13.9% (316 accepted out of 2,278 submissions), and only about 1% of all submitted papers received a Distinguished Paper Award.

Congratulations to the entire team for this outstanding achievement!

#ACMCCS2025 #CyberSecurity #XR #Authentication