Here are some columns, short articles, and chapters I have written (often with students and colleagues) that have been published in magazines, newspapers, books, and blogs. See also my personal blog and my IEEE Security and Privacy podcast with Bob Blakely Over the Rainbow.
Internet of Things Security and Privacy Labels Should Empower Consumers, Communications of the ACM, March 2024, pp. 29-31 (with Yuvraj Agarwal and Pardis Emami-Naeini).
Metrics for Success: Why and How to Evaluate Privacy Choice Usability, Communications of the ACM, March 2023, pp. 35-37 (with Hana Habib).
Mobile-App Privacy Nutrition Labels Missing Key Ingredients for Success, Communications of the ACM, November 2022, pp. 26-28.
Cookie Monster, Communications of the ACM, July 2022, pp. 30-32.
How Everyone Can Get the Online Privacy They Want: Most people rarely read the privacy-consent requests they approve. There's a better way. The Wall Street Journal, June 7, 2022.
Is a Privacy Crisis Experienced, a Privacy Crisis Avoided?, Communications of the ACM, March 2022, Vol. 65 No. 3, Pages 26-29 (with Michael Skirpan, Maggie Oates, Daragh Byrne, and Robert Cunningham).
This New Year, why not resolve to ditch your dodgy old passwords? The Conversation, January 2, 2022 (with Paul Haskell-Dowland).
Privacy Engineering Superheroes, Communications of the ACM, November 2021, Vol. 64 No. 11, Pages 23-25 (with Lea Kissner).
Lessons from the Loo, Communications of the ACM, July 2021, pp. 27-29.
Informing California Privacy Regulations with Evidence from Research, Communications of the ACM, March 2021, pp. 29-32.
Take my word for it: Privacy and COVID alert apps can coexist, The Hill, November 10, 2020.
Digital Contact Tracing May Protect Privacy, But It Is Unlikely to Stop the Pandemic, Communications of the ACM, November 2020, pp. 22-24.
Private browsing: What it does -- and doesn't do -- to shield you from prying eyes on the web, The Conversation, July 30, 2020 (reprinted in FastCompany and elsewhere
An Idea Whose Time Has (Finally) Come, IAPP 2020: Visions of Privacy Anthology, July 2020, page 22-23
Usable and Useful Privacy Interfaces, in An Introduction to Privacy for Technology Professionals, IAPP 2020, pp. 176-236 (with Florian Schaub).
Website privacy options aren't much of a choice since they're hard to find and use, The Conversation, October 31, 2019
Choose better passwords with the help of science, The Conversation, August 30, 2017 (reprinted in The Washington Post and elsewhere
Your research can help the FTC protect consumers , Tech@FTC, January 17, 2017 - archived here
Reflections on the FTC's Disclosure Evaluation Workshop, Tech@FTC, November 30, 2016 - archived here
Your mobile phone account could be hijacked by an identity thief, Tech@FTC, June 7, 2016 - archived here
Open Police Data Re-identification Risks, Tech@FTC, April 27, 2016 - republished here and archived here
Time to rethink mandatory password changes, Tech@FTC, March 2, 2016 - archived here
Self-Defense, MIT Technology Review, April 23, 2014