United States
With over three years as a Senior Research Scientist at Google, I focus on advancing security and privacy solutions in the age of AI. My work includes leading research on microarchitectural security, developing tools for private inference in the cloud, and evaluating emerging memory safety features. I have contributed to protecting billions of users against hardware vulnerabilities such as Downfall and Phoenix. My expertise spans security research, cryptographic vulnerability discovery, and hardware-software co-design. I am motivated by the challenge of creating secure systems that enhance privacy. My mission is to enable innovative security solutions that address modern computing threats while fostering collaboration across teams and organizations.
I created a new research program on microarchitectural security. As a result, I developed new tools and mitigations to harden confidential compute and private inference in the Cloud. I also contributed to evaluation of new memory safety security features on ARM (MTE, LFI, and CHERI), and automated vulnerability discovery in cryptography (GPAM, DroidCCT). I helped Google to protect billions of people against new classes of hardware vulnerabilities: Downfall, Reptar, Phoenix. I published 10+ research papers in top tier security and computer architecture conferences and served as the liaison for several academic research program.
I worked on software-hardware co-design for secure systems, security analysis of commodity processors, and side-channel analysis of cryptographic protocols. I went on the academic job market and received several offers from top 10 universities in the US for tenure-track professorship.
I was part of the Qualcomm Product Security Initiative (QPSI). I investigated system-level PCIe controller security with multiple endpoint functions and host SoC clients, and identified areas for further hardening and analysis. I also worked on a side project, successfully demonstrated a proof-of-concept to design and enforce time-based key expiration policies for TPM-shielded keys.
I was funded by the US National Science Foundation under grants no. 1618837, and 181440 throughout my Ph.D., researching microarchitectural security and software-based side channels.
I helped teaching courses at the computer science department: Advanced Computer Networks (CS 4516), Techniques of Programming Language Translation (CS 4533), Webware (CS 4241), Operating System (CS 3013), Machine Organization and Assembly Language (CS 2011), Software SecurityEngineering (CS 4401)
As part of Cisco Talos team, I worked on integrating the Intel-PT trace into Win-AFL for fuzzing closed-source binaries on windows. I also developed a web service for managing fuzzing nodes on a cluster.