IEEE Security and Privacy

IEEE Security and Privacy
Title	IEEE Security and Privacy
Discipline	Computer security, Information privacy
Abbreviation	IEEE S&P
Publisher	Institute of Electrical and Electronics Engineers
Country	United States
Frequency	Bimonthly
Established	2003

Contents

IEEE Security and Privacy

IEEE Security and Privacy is a bimonthly magazine and peer-influenced venue covering applied computer security, information privacy, and related technical and policy issues. Its editorial program bridges work from institutions such as Carnegie Mellon University, Massachusetts Institute of Technology, Stanford University, University of California, Berkeley, and University of Oxford while engaging practitioners from Microsoft, Google, Apple Inc., IBM, and Amazon (company). The publication connects research, engineering, and operational communities involved with projects at DARPA, National Institute of Standards and Technology, European Union Agency for Cybersecurity, and standards bodies like Internet Engineering Task Force.

History

Founded in 2003 under the auspices of the IEEE Computer Society and the IEEE Council on Security and Privacy, the magazine emerged as consolidation of editorial initiatives responding to rising threats highlighted by incidents such as the Morris worm aftermath and policy debates following the USA PATRIOT Act. Early editorial leadership included figures affiliated with AT&T Bell Labs, SRI International, and Bell Labs Research, who sought to synthesize perspectives from RSA Conference panels, Black Hat (conference) briefings, and academic symposia at venues such as ACM Conference on Computer and Communications Security and USENIX Security Symposium. Over time the magazine expanded content to reflect developments tied to cases involving Sony Pictures Entertainment cyberattack, WannaCry ransomware attack, and policy shifts linked to General Data Protection Regulation debates in the European Parliament.

Coverage spans cryptographic practice referenced against work like RSA (cryptosystem), AES, and SHA-2, threat modelling rooted in studies by teams at University of Cambridge and University of Washington, and system security advances inspired by projects from Google Project Zero and OpenSSL Project. The magazine publishes explanatory pieces on applied topics such as secure hardware developments from Intel and ARM Holdings, privacy engineering influenced by research at Cornell University and Princeton University, and case studies involving enterprises like Cisco Systems and Oracle Corporation. Policy-oriented essays relate to debates at United Nations, analyses of rulings by the United States Supreme Court, and regulatory guidance tied to Federal Trade Commission actions and European Commission initiatives. Interdisciplinary conversations connect to work at Harvard University, Yale University, New York University, University of Pennsylvania, and think tanks such as RAND Corporation.

The editorial board comprises academics and industry practitioners affiliated with institutions including Columbia University, California Institute of Technology, Georgia Institute of Technology, University of Illinois Urbana-Champaign, and University of Toronto. Editorial operations coordinate peer review processes similar to those used by ACM Transactions on Information and System Security and engage guest editors from conferences like IEEE Symposium on Security and Privacy. Regular sections include research summaries, practitioner reports, tutorials, and opinion pieces written by contributors from Facebook, Twitter, LinkedIn, Palantir Technologies, and governmental labs such as Sandia National Laboratories and Lawrence Berkeley National Laboratory. Special issues have been guest edited by experts from Microsoft Research, IBM Research, Bell Labs, and DARPA program managers.

The magazine maintains close ties to major community events including the IEEE Symposium on Security and Privacy, RSA Conference, Black Hat USA, DEF CON, USENIX Security Symposium, ACM CCS, and regional workshops such as AsiaCCS and NordSec. It sponsors workshops and collaborative meetings involving organizations like ENISA, National Cyber Security Centre (UK), Australian Cyber Security Centre, and academic summer schools at ETH Zurich and École Polytechnique Fédérale de Lausanne. Special workshops have featured panels with speakers from NSA, GCHQ, Interpol, World Economic Forum, and representatives from standards groups including IETF and IEEE Standards Association.

The magazine and its contributors have been associated with honors and recognitions in the broader community, including careers highlighted by the Turing Award, ACM Fellow distinctions, IEEE Fellow grades, and community prizes such as the Test of Time Award and USENIX Lifetime Achievement Award. Authors publishing in the magazine often hold accolades from institutions like National Academy of Engineering, Royal Society, Royal Academy of Engineering, and awards given by the European Commission and national science agencies including National Science Foundation grants.

IEEE Security and Privacy has influenced security engineering practices at companies such as Microsoft, Google, Amazon (company), Apple Inc., and Cisco Systems, shaped curriculum choices at universities like Stanford University and Massachusetts Institute of Technology, and informed policy debates at United States Congress hearings and European Parliament committees. Criticism has come from commentators connected to OpenBSD, GNU Project, and civil liberties organizations like Electronic Frontier Foundation and ACLU over perceived editorial biases, selection of industry voices, and balance between defensive research and offensive capabilities discussions. Debates echo controversies involving publications at Nature, Science, and disputes similar to those seen around disclosure practices highlighted in the Heartbleed and Stuxnet analyses.

Category:IEEE publications