I build systems that use cryptography to empower and protect their users.
The projects that excite me the most:
(1) serve the interests of the end user,
(2) provide strong and precise forms of security,
often using new cryptographic ideas, and
(3) have impact through real-world deployment.
My recent projects include:
- Techniques for reducing the computational cost of private information retrieval
in theory and
- SafetyPin and
that provide strong hardware-backed security protections,
while still protecting against a wide class of hardware faults and backdoors
- Prio, a system for the privacy-preserving collection of aggregate statistics
(adopted by Mozilla's Firefox browser,
offered as a service by ISRG, the entity behind Let's Encrypt,
and used in Android
and iOS to measure the effectiveness of their Exposure Notification systems)
- The study of preprocessing attacks
on cryptographic primitives and the risks they pose to our standardized primitives, such as
the AES block cipher and the NIST family of elliptic curves
For more details,
please see my full list of publications.