Principal Research Manager Microsoft Security response Center (MSRC)
21 Station Road
Cambridge, CB1 2FB
United Kingdom
Email: [firstname].[lastname]
Microsoft Research | GitHub | LinkedIn | X | MSRC Blog02/2025: I'm serving as an Associate Chair for the IEEE Symposium on Security and Privacy 2026.
01/2025: I'll be giving a talk on "Vulnerability Response in the Era of AI" at EPFL AMLD 2025.
12/2024: Our paper Get my drift? Catching LLM Task Drift with Activation Deltas has been accepted for presentation and publication at IEEE SaTML 2025.
11/2024: I'm serving on the program committee for ACM CCS 2025.
08/2024: I'll be giving a lecture at KU Leuven's Summer School on Security & Privacy in the Age of AI 2024.
07/2024: I'll be speaking on a panel about Generative AI and Security at the Centre for Digital Trust and Society Forum 2024.
06/2024: Excited to have been part of the inaugural AI security tabletop exercise conducted by the Cybersecurity and Infrastructure Security Agency (CISA).
05/2024: I'm serving on the program committee for the IEEE Symposium on Security and Privacy 2025.
05/2024: Our paper Trustworthy AI using Confidential Federated Learning: Federated learning and confidential computing are not competing technologies has been published in ACM Queue.
02/2024: Our paper Closed-Form Bounds for DP-SGD against Record-level Inference Attacks has been accepted for presentation and publication at USENIX Security 2024.
01/2024: We've opened applications for research internships in security and privacy at Microsoft Cambridge.
08/2023: We're published the new Microsoft Vulnerability Severity Classification for AI Systems and an accompanying blog post.
07/2023: We're hiring AI Security Researchers to join our new team at the Microsoft Security Response Center.
06/2023: I'm giving a keynote on Evaluating Privacy in Machine Learning at the Dependable and Secure Machine Learning (DSML) workshop 2023.
06/2023: Our paper An Empirical Study & Evaluation of Modern CAPTCHAs has been accepted for presentation and publication at USENIX Security 2023.
05/2023: Our paper Bayesian Estimation of Differential Privacy has been accepted for presentation and publication at ICML 2023.
04/2023: Our paper SoK: Let The Privacy Games Begin! A Unified Treatment of Data Inference Privacy in Machine Learning has been accepted for presentation and publication at the IEEE Symposium on Security and Privacy 2023.
03/2023: I'm serving as an Associate Chair for the IEEE Symposium on Security and Privacy 2024.
01/2023: Our paper on VICEROY: GDPR-/CCPA-compliant Enforcement of Verifiable Accountless Consumer Requests has been accepted for presentation and publication at NDSS 2023.
01/2023: We've opened applications for research internships in confidential computing at MSR Cambridge.
09/2022: I'm serving on the senior program committee for the ACM Web Conference 2023 (formerly WWW). Please consider submitting your work (abstracts due 6 October).
05/2022: Our paper on Pre-hijacked accounts: An Empirical Study of Security Failures in User Account Creation on the Web has been accepted for presentation and publication at USENIX Security 2022. Summary available on the MSRC Blog.
05/2022: I'm serving on the program committee of the first IEEE Conference on Secure and Trustworthy Machine Learning 2023. Please consider submitting your work to this exciting new conference (abstracts due 22 August)!
04/2022: I'm serving on the program committee for the USENIX Security Symposium 2023.
03/2022: I'm serving on the program committee for the IEEE Symposium on Security and Privacy 2023.
12/2021: Great to work with Will Pearce and the other co-authors on Microsoft's AI Security Risk Assessment whitepaper.
10/2021: I'm honoured to have been selected for a 2020/21 Departmental Teaching Award from the University of Oxford Department of Computer Science.
09/2021: I'm serving as a co-chair of the Security, Privacy, and Trust track at The Web Conference 2022. Please consider submitting your work on any aspects of security, privacy, or trust related to the web (abstracts due 14 October)!
08/2021: We've opened applications for research internships in confidential computing at MSR Cambridge.
07/2021: I'm serving on the program committee for ACASC 2021.
06/2021: Our paper Grey-box Extraction of Natural Language Models has been accepted for presentation and publication at ICML 2021.
05/2021: We're looking for a Post-doc researcher and a Senior researcher (in collaboration with the Microsoft Security Response Center) to join our team in MSR Cambridge working on security and privacy in ML.
04/2021: I'm serving on the program committee for the IEEE Symposium on Security and Privacy ("Oakland") 2022.
02/2021: Our paper CACTI: Captcha Avoidance via Client-side TEE Integration has been accepted for presentation and publication at USENIX Security 2021.
01/2021: We've opened applications for research internships in confidential computing at MSR Cambridge.
11/2020: An extended version of our paper PDoT: Private DNS-over-TLS with TEE Support has been accepted for publication in ACM Digital Threats: Research and Practice (DTRAP).
10/2020: I'm serving on the program committee for the 6th IEEE European Symposium on Security and Privacy (Euro S&P) 2021.
09/2020: We have an open position for a post-doctoral researcher in privacy-preserving machine learning, focussing on natural language models.
09/2020: Our paper Analyzing Information Leakage of Updates to Natural Language Models has been accepted for presentation and publication at ACM CCS 2020.
08/2020: New blog article on our work to bring Control Flow Guard (CFG) to Clang/LLVM and Rust. [Press: ZDNet, BleepingComputer]
07/2020: I'm honoured to have been selected for a Departmental Teaching Award from the University of Oxford Department of Computer Science.
06/2020: I'm serving on the program committee for the Security Standardisation Research Conference 2020.
02/2020: I'm serving on the program committee for the 36th Annual Computer Security Applications Conference (ACSAC) 2020.
09/2019: Our paper PDoT: Private DNS-over-TLS with TEE Support has been accepted for presentation and publication at the 2019 Annual Computer Security Applications Conference (ACSAC).
08/2019: Our paper S-FaaS: Trustworthy and Accountable Function-as-a-Service using Intel SGX has been accepted for presentation and publication at the 2019 ACM Cloud Computing Workshop (CCSW).
07/2019: Our paper Sustainable Security & Safety: Challenges and Opportunities has published at the 4th International Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS) 2019.
06/2019: Our paper Security in Automotive Networks: Lightweight Authentication and Authorization has won the 2019 ACM Transactions on Design Automation of Electronic Systems (TODAES) Best Paper Award.
05/2019: I've been invited to serve on the program committee for the Network and Distributed Systems Security Symposium (NDSS) 2020.
02/2019: Our paper HardScope: Hardening Embedded Systems Against Data-Oriented Attacks has been accepted for presentation and publication at DAC 2019.
01/2019: Our paper Smart Grid Metering Networks: A Survey on Security, Privacy and Open Research Issues has been accepted for publication in IEEE Communications Surveys and Tutorials.
11/2018: Excited to announce that I've started a new job as a Researcher at Microsoft Research Cambridge.
08/2018: Our paper Mitigating Branch-Shadowing Attacks on Intel SGX using Control Flow Randomization has been accepted for SysTEX 2018.
08/2018: Our paper Towards Linux Kernel Memory Safety has been accepted to appear in Software: Practice and Experience.
06/2018: Klaudia Krawiecka's Masters thesis received an Honorable mention from the Finnish Society for Computer Science. See press release from Aalto. Congratulations Klaudia!
06/2018: Our paper Keys in the Clouds: Auditable Multi-device Access to Cryptographic Credentials has been accepted for SECPID 2018.
05/2018: Our SafeKeeper paper has been featured on The Morning Paper - May 22, 2018.
05/2018: Our 2017 masters course on Mobile Systems Security (CS-E4310) has been selected as the 5th best small course in the department (< 50 students) based on student feedback.
04/2018: Our paper Migrating SGX Enclaves with Persistent State has been accepted for DSN 2018.
02/2018: Our paper SafeKeeper: Protecting Web Passwords Using Trusted Execution Environments, and our SafeKeeper demo paper have both been accepted for The Web Conference (WWW) 2018.
11/2017: I have been selected as one of the recipients of the US-UK Fulbright Cyber Security Scholar Award for 2017-18. I will be visiting Gene Tsudik at the University of California, Irvine in Summer 2018.
10/2017: [Students] Klaudia Krawiecka's masters thesis Improving Web Security Using Trusted Hardware has been selected as the best Information Security masters thesis in Finland for 2016-17. See press releases from Aalto, Tietoturva, Tivia, and Oxford. Congratulations Klaudia!
10/2017: [Service] I have been appointed as a Deputy Director of the Helsinki-Aalto Center for Information Security (HAIC), with the mandate to establish and lead the new HAIC public outreach initiative.
10/2017: [Talks] I will be visiting Prof Z. Erkin at TU Delft. This visit is supported by CSng and 4TU.NIRICT.
10/2017: [Publications] Our paper The Circle Game: Scalable Private Membership Test Using Trusted Hardware has been selected as one of 10 European finalists in the Applied Research Competition at CSAW Europe 2017.
09/2017: Our project Blockchain Consensus and Beyond: Scalable Secure Consensus & Applications has been funded by the Academy of Finland until September 2020.
08/2017: [Publications] Our paper on Formal Analysis of V2X Revocation Protocols has been accepted to STM 2017.
05/2017: [Teaching] Our 2016 masters course on Mobile Systems Security (CSE-E5480) has been selected as the 5th best small course in the department (< 50 students) based on student feedback.
05/2017: [Service] I am on the program committee of the 2nd Workshop on System Software for Trusted Execution (SysTEX 2017). Please consider submitting a full paper or a short research statement.
04/2017: [Publications] Our paper The Circle Game: Scalable Private Membership Test Using Trusted Hardware received an Honourable Mention at ACM ASIACCS 2017.
04/2017: [Talks] Slides from our ASIACCS 2017 tutorial are now online: Remote Attestation: Building trust in things you can't see
10/2016: [Teaching] Our proposal for a summer academy on the topic of Legal and Technical Aspects of Digital Privacy has been accepted by the Studienstiftung des deutschen Volkes.
11/2022 - present | Principal Research Manager, Microsoft Security Response Center (MSRC) |
11/2018 - 11/2022 | Senior Researcher, Microsoft Security Response Center (MSRC) |
05/2018 - 08/2018 | Fulbright Cyber Security Scholar, University of California, Irvine, USA Hosted by Gene Tsudik |
10/2017 - 11/2018 | Research Fellow, Aalto University, Finland Deputy Directory of the Helsinki-Aalto Center for Information Security (HAIC) |
10/2015 - 09/2017 | Post-doctoral researcher, Aalto University, Finland Secure Systems Group with N. Asokan |
10/2011 - 09/2015 | DPhil Computer Science, University of Oxford (Balliol College) Supervisors: Andrew Martin and Ian Brown |
01/2011 - 09/2011 | M.Sc. Electrical & Computer Engineering, University of Cape Town Supervisor: Mike Inggs |
01/2007 - 12/2010 | B.Sc. Electrical Engineering, University of the Witwatersrand, Johannesburg |