We are currently investigating a broad spectrum of topics in security, cryptography, and privacy. These topics range from fundamental research on privacy in the context of statistical databases to new systems mechanisms for realizing security in operating systems to mitigating and preventive measures against worms and viruses.
- Database PrivacyResearch related to privacy issues in data analysis.
- Online-Service Security and IntelligenceWe take a data-driven approach to enhancing the security and other aspects of large-scale online services, including for instance email services, search engines, and advertising systems. We explore network-host properties (e.g., the use of proxy servers and dynamically assigned IP addresses), service-level topologies, and user social connectivity. We correlate all this fine-grained information with application-specific traces, for attack defense and for improving services.
- PastureMobile user experiences are enriched by applications that support disconnected operations to provide better mobility, availability, and response time. However, offline data access is at odds with security when the user is not trusted, especially in the case of mobile devices, which must be assumed to be under the full control of the user. Pasture leverages commodity trusted hardware to provide secure offline data access by untrusted users.
- Privacy Integrated Queries (PINQ)Privacy Integrated Queries is a LINQ-like API for computing on privacy-sensitive data sets, while providing guarantees of differential privacy for the underlying records. The research project is aimed at producing a simple, yet expressive language about which differential privacy properties can be efficiently reasoned and in which a rich collection of analyses can be programmed.
- TotientIn this work, we explore the properties of the global PKI as it exists in practice. We then leverage this information to construct flexible mechanisms that allow observers to fashion individualized policies to determine certificate trust.