Originally, the Internet was a collaborative effort among researchers, but has since evolved into a marketplace comprising millions of commercial entities and billions of users who often have conflicting goals. My work builds off of the belief that we can secure the Internet by understanding and accounting for these competing interests.
I empirically measure security on the Internet to understand how security breaks down, and I apply economics and cryptography to design and build new systems with provable and usable security. I study the web's PKI, censorship avoidance, DNS root servers, and more. I have been fortunate to work with many wonderful collaborators. See my CV for more information.
I am an Assistant Professor at the University of Maryland. I am looking for ambitious, motivated PhD and undergraduate students to work with. If you're interested in systems and network security, then:
I am the founder of Breakerspace, a lab for group undergraduate research in computer and network security. CS enrollment is skyrocketing: Breakerspace's goal is to scale research so more students can try it. We are actively looking for participants.
Big week with lots of presentations! Kevin Bock presenting Iran's protocol filter at FOCI'20 and server-side Geneva at SIGCOMM'20; Stephen Herwig presenting Keyless CDNs at USENIX'20, and Richard Roberts presenting his poster on models of user (mis)understanding of URLs at SOUPS'20.
Stephen Herwig successfully proposed his dissertation, "Execution Environments for Running Legacy Applications in Multi-Party Trust Setting"!
This Fall, I'm teaching:
I also helped design and run the Build it, break it, fix it secure programming competition that gives students firsthand experience with building secure code.All My Classes
I was the General Chair for the ACM Symposium on SDN Research (SOSR) 2017 and for HotNets 2013. I regularly serve on program committees and NSF panels, and have also visited Congress to discuss increasing nationwide funding for scientific research.All Service