Lorrie Faith Cranor

Professor, Computer Science and Engineering & Public Policy
Director, CyLab Usable Privacy and Security Laboratory
Co-director, MSIT-Privacy Engineering masters program

I was on leave from CMU in 2016 to serve as Chief Technologist at the US Federal Trade Commission. But now I'm back at CMU!

Spring 2017: teaching Mondays and Wednesdays 3-4:20 pm, Thursday noon-1:20 pm (Eastern)

mailing address: Carnegie Mellon University, 5000 Forbes Avenue, Pittsburgh, PA 15213
office: CIC 2207 (4720 Forbes Ave [directions])
phone: 412-268-7534 (I rarely check voice mail)
email: lorrie AT cs DOT cmu DOT edu
administrative coordinator: Tiffany M. Todd, 4114 Wean Hall, (412) 268-6367, ttodd AT cs DOT cmu DOT edu

Important information for prospective students and visitors

Usable privacy and security, technology and public policy
Watch a short video about my research

• Read about CMU research on usable and secure passwords
• CBS Sunday Morning video featuring me and my password dress - also text version
• The now-famous password dress, the companion security blanket quilt that was featured in Science Magazine, the CNET article, password chairs and more and you can order the fabric and ties and read about our passwords research
• My Tech@FTC blog post Time to rethink mandatory password changes
• Watch my 5-minute Davos video on Personal Privacy Assistants and the Internet of Things, and read my trip report
• Check out our Privacy Illustrated website featuring illustrations of privacy from kindergartners through adults
• A short piece I wrote for MIT Technology Review about how difficult it is to protect your privacy
• The CUPS Lab has openings for PhD students and postdocs with a background in usable security or privacy, undergraduate research assistants, as well as research programmers and CMU students who want part-time programming jobs
• We are now accepting applications for the Fall 2017 class of our MSIT-Privacy Engineering masters program
• Check out our search engine for comparing bank privacy policies
• My TEDxCMU 2014 talk on passwords (as featured on Delta Airlines Inflight Entertainment)
• A 60-minute presentation I gave in Fall 2013: Computers, Quilts, and Privacy
• I spent 2014-15 learning a lot about leadership as an ELATE Fellow. Female faculty in STEM fields should consider applying.

Usable Privacy Policy Project, usable and secure passwords, privacy decision making, user-controllable security and privacy, usable cyber trust indicators

anti-phishing, P3P, electronic voting, and security vulnerabilities in movie distribution

• See Publications section of my resume (sorted by publication type)
• CUPS website publication list (sorted by topic, includes other peoples' publications as well)
• My Google Scholar page
• My ACM Digital Library author page

• Institute for Software Research in the School of Computer Science
• Engineering and Public Policy department in the College of Engineering
• CyLab Usable Privacy and Security Laboratory (CUPS) (director) in CyLab
• MSIT-Privacy Engineering masters program (co-director)
• Ph.D. Program in Societal Computing
• MSIT-eBusiness Technology masters program (consulting faculty)
• Electrical & Computer Engineering Department (affiliate faculty)
• Human-Computer Interaction Institute (affiliate faculty)
• Heinz College (affiliate faculty)
• STUDIO for Creative Inquiry (fellow and member of Deep Lab)

• Deep Lab, Founding member
• ELATE Fellow, 2014-15
• Electronic Frontier Foundation Board of Directors, 2007-2015
• The Future of Privacy Forum Advisory Board, 2009-2015
• Wombat Security Technologies, co-founder
• AT&T Labs-Research, 1996 - 2003

• 5-436 / 5-836 / 08-534 / 08-734 / 19-534 / 19-734 Usable Privacy and Security
  SP17, SP15, SP14, FA11, FA09, SP08, SP07, SP06
• 8-533 / 8-733 / 19-608 / 95-818: Privacy Policy, Law, and Technology
  FA15,FA14, FA13, FA10,FA08, FA07, FA05, FA04, SP04
• 8-602: Current Topics in Privacy Seminar
  FA13
• 15-290 / 17-290 / 19-211: Special Topics: Computers and Society
  SP07, SP06, SP05
• EPP Undergraduate Project
  SP09 Carrying Capacity, SP10 Privacy, SP11 Green Printing, SP12 Emergency Messaging with Social Media
• COS PhD seminar
  SP06, FA05, SP05, FA04
• 08-709 Privacy Technology (MSIT eBusiness Program)
  SP14, SP13, SP12, SP11, SP10, SP09, SP08, SP07, SP06

Current PhD Students: Jessica Colnago (Societal Computing), Hana Habib (Societal Computing), Pardis Emami Naeini (Societal Computing), Abby Marsh (Societal Computing) Josh Tan (Societal Computing)

Graduated PhD Students (advisor): Rebecca Balebako (EPP PhD 2014), Cristian Bravo Lillo (EPP PhD 2014), Serge Egelman (COS PhD 2009), Patrick Kelley (COS PhD 2013, co-advisor w/ N. Sadeh), Saranga Komanduri (Societal Computing PhD 2016), Ponnurangam Kumaraguru (COS PhD 2009), Pedro Leon (EPP PhD 2014), Aleecia McDonald (EPP PhD 2010), Rob Reeder (CSD PhD 2008), Rich Shay (COS PhD 2015), Steve Sheng (EPP PhD 2009), Manya Sleeper (Societal Computing PhD 2016), Janice Tsai (EPP PhD 2009), Blase Ur (Societal Computing PhD 2016), Kami Vaniea (CSD PhD 2012, co-advisor w/ L. Bauer)

Graduated PhD Students (committee member): Andrew Besmer (PhD 2013 University of North Carolina at Charlotte), Varun Dutt (EPP PhD 2011), Patrick Feng (PhD 2002 Rensselaer Polytechnic Institute), Maritza Johnson (PhD 2012 Columbia University), Cynthia Kuo (EPP PhD 2008), Elaine Newton (EPP PhD 2009), Kursat Ozenc (Design PhD 2011), Brandon Salmon (ECE PhD 2009), Karen Tang (HCII PhD 2010)

I have consulted for companies and non-profits on privacy policies, P3P, usable privacy and security, and technology policy. I have also served as an expert witness in patent litigation and in privacy cases, and in cases challenging the constitutionality of Internet harmful-to-minors laws, including the ACLU's successful challenge to the 1998 Children's Online Protection Act. I currently do expert witness consulting through Harbor Labs.

I spend most of my free time with my husband (Chuck), son (Shane), and daughters (Maya and Nina). I walk to work, practice yoga, take lots of photos, and design and create quilts. I also serve as an elected election judge, SciTech PTO President, and Dynamoms women's soccer commissioner.