Lorrie Cranor

Lorrie Faith Cranor, D.Sc. is the FORE Systems Professor of Computer Science and Engineering and Public Policy at Carnegie Mellon University and is the director of the Carnegie Mellon Usable Privacy and Security Laboratory. She has served as Chief Technologist of the Federal Trade Commission, and she was formerly a member of the Electronic Frontier Foundation Board of Directors.[1] Previously she was a researcher at AT&T Labs-Research[2] and taught in the Stern School of Business at New York University. She has authored over 110 research papers on online privacy, phishing and semantic attacks, spam, electronic voting, anonymous publishing, usable access control, and other topics.[3]

Lorrie Cranor
Privacy and security in a connected age.jpg
Born (1971-02-25) February 25, 1971 (age 50)
Other namesLorrie Faith Cranor
EducationMontgomery Blair High School 1989
Alma materWashington University in St. Louis
EmployerCarnegie Mellon University, Federal Trade Commission
Known forprivacy and security research, cyberfeminism

Early life and educationEdit

Cranor was a member of the first class to graduate from the Mathematics, Science, and Computer Science Magnet Program at Montgomery Blair High School in Silver Spring, Maryland.[4] She received a bachelor's degree in Engineering and Public Policy, master's degrees in Technology and Human Affairs, and Computer Science, and a doctorate in Engineering and Policy, all from Washington University in St. Louis.[5]

Marriage and childrenEdit

Cranor is married to Chuck Cranor,[6] a fellow researcher at Carnegie Mellon University.[7] They have three children together:[7][8]

  • Shane Zachary Cranor (2001 - )
  • Maya Quinn Cranor (2003 - )
  • Nina Veronica Cranor (2006 - )


At CMU, Cranor's research has largely focused on privacy policies and passwords.[9]

Cranor is not only a leading researcher but also a tough critic of the online ad industry's privacy initiatives. In 2008, she blasted Web companies for crafting unreadable privacy policies. She said in a report that online privacy policies take users an average of 10 minutes to read. That report also said that if every U.S. Web user read the privacy policy at every site visited, the time spent reading privacy policies would total an estimated 44.3 billion hours per year.[10]

Cranor led the development of the Platform for Privacy Preferences (P3P) Project at the World Wide Web Consortium and authored the book Web Privacy with P3P.[10] She also led the development of the Privacy Bird P3P user agent and the Privacy Finder P3P search engine.[citation needed]

Cranor has played a key role in building the usable privacy and security research community, having co-edited the book Security and Usability (O'Reilly 2005) and founded the Symposium On Usable Privacy and Security (SOUPS).[11]

Cranor is a co-founder of Wombat Security Technologies, Inc and has authored over 150 research papers on online privacy, usable security, and other topics.[11]

She is a member of the feminist collective Deep Lab.[12]

Honors and awardsEdit

In 2003, she was named to the MIT Technology Review TR100 as one of the top 100 innovators in the world under the age of 35.[13][14]

In 2013, Cranor's Security Blanket won Honorable Mention in the International Science & Engineering Visualization Challenge presented by Science and the National Science Foundation.[15] She gave a TEDx talk in March 2014 entitled, "What's Wrong with your pa$$w0rd."[16]

In 2014, she was elected to ACM Fellow For contributions to research and education in usable privacy and security.[17]

In 2016, was named Fellow of the Institute of Electrical and Electronics Engineers (IEEE).[18]

In 2017, she was elected to the CHI Academy.[19] At the same conference, Cranor was awarded a prestigious Best Paper award for her paper titled Design and Evaluation of a Data-Driven Password Meter.[20]


  1. ^ Peterson, Andrea (3 December 2015). "The FTC is getting a new chief technologist: Carnegie Mellon's Lorrie Cranor". Washington Post.
  2. ^ Schwartz, John Is Legal Action Against File Swappers Good Business? New York Times, September 15, 2003
  3. ^ "Lorrie Faith Cranor - Google Scholar Citations". Google Scholar. Retrieved 17 September 2014.
  4. ^ Zhou, Xinyi (Winter 2014). "Usable Privacy: Lorrie Faith Cranor '89". Montgomery Blair High School Magnet Foundation. Retrieved 17 September 2014.
  5. ^ "Lorrie Cranor - Carnegie Mellon University Cylab". Carnegie Mellon University. Retrieved 17 September 2014.
  6. ^ "Lorrie Faith Cranor's Home Page". lorrie.cranor.org. Retrieved 2017-02-21.
  7. ^ a b "Chuck Cranor's Home Page". chuck.cranor.org. Retrieved 2017-02-21.
  8. ^ "Lorrie Faith Cranor's Short Bio". lorrie.cranor.org. Retrieved 2017-02-21.
  9. ^ Wills, Rick. "CMU professor to become FTC's chief technologist". TribLIVE.com. Retrieved 2018-02-03.
  10. ^ a b "FTC Hires Online Privacy Guru Lorrie Cranor". Retrieved 2018-02-03.
  11. ^ a b Infratech, SecuObs. "- USENIX Security '15 - Conducting Usable Security Studies It's Complicated SecuObs - L'observatoire de la sécurite internet - Site d'informations professionnelles francophone sur la sécurité informatique". www.secuobs.com. Retrieved 2018-02-03.
  12. ^ "About Us". deeplab.net. Retrieved 27 June 2016.
  13. ^ "2003 Young Innovators Under 35". Technology Review. 2003. Retrieved August 15, 2011.
  14. ^ Lorrie Cranor's biography on Technology Review's 2003 Young Innovators Under 35
  15. ^ "2013 Visualization Challenge". Science. 343 (6171): 600–610. 7 February 2014. doi:10.1126/science.343.6171.600. PMID 24503833. Retrieved 17 September 2014.
  16. ^ "Lorrie Cranor: What's wrong with your pa$$w0rd". ted.com. March 2014.
  17. ^ ACM Fellows 2014
  18. ^ "2016 elevated fellow" (PDF). IEEE Fellows Directory.
  19. ^ "Archived copy". Archived from the original on 2017-02-22. Retrieved 2017-02-21.CS1 maint: archived copy as title (link)
  20. ^ https://chi2017.acm.org/papers.html

External linksEdit