I am a postdoctoral researcher at the Applied Crypto Group at Stanford University and a Technology Fellow at the Electronic Frontier Foundation, supported by a SUFP Fellowship from the Open Technology Fund and Simply Secure.
Broadly, I study the difficulty of successfully deploying cryptography and security technologies due to compatibility requirements, economic incentives, and human factors. I'm particularly interested in secure communication tools, cryptocurrencies, password and web authentication, and HTTPS and PKI on the web. My past research has spanned side-channel cryptanalysis, protocol verification, software obfuscation, and privacy in social networks.
I completed my PhD in 2012 with the Security Group at the University of Cambridge Computer Laboratory, supervised by Professor Ross Anderson and funded as a Gates Cambridge Scholar. My PhD thesis formalises the analysis of human-chosen distributions of secrets, specifically passwords and PINs.
My background is in computer science, math, and cryptography, in which I earned my BS and MS from Stanford. I was a fellow at at the Center For Information Technology Policy, Princeton in 2014 and I have also worked in cryptography and security at Google, Yahoo!, Cryptography Research, Inc and as a private consultant.