Our group builds robust systems infrastructure for emerging cloud and edge applications that is secure, reliable, and scalable. We leverage emerging hardware security features and advanced cryptography, integrating techniques in systems building, cryptographic protocol design, and large-scale performance evaluation. We apply these ideas across storage and networking, software supply chains, AI and agentic systems, and other critical infrastructure where trustworthy computation is essential.

Students who join early will help shape a new research group, working closely with me on ambitious systems security projects and publishing in top security and systems conferences and journals.

• Confidential computing/trusted execution environments (design and applications)
• Software supply chain security
• Secure infrastructure for AI (includes agent sandboxing, secure AI runtimes, etc.)
• Cloud/edge infrastructure security
• Observability/telemetry for security
• Verifiable and tamper-evident system design

Curious and self-motivated students and researchers with different backgrounds and levels of experience are all welcome to apply. Strong applicants will usually have experience in one or more of the following areas: computer security, systems programming, distributed systems, cloud computing, applied cryptography, trusted execution environments, cloud storage systems, computer networking, or large-scale performance evaluation. Applicants with strong engineering portfolios, open-source contributions, research experience, or other substantial independent projects are especially encouraged to reach out. Students and researchers who join the group will have the opportunity to build real systems and develop high-quality research artifacts for the scientific community (and broader public).