Measuring and Improving Internet Security

Assistant Professor Computer Science
Co-Chair, CS Undergraduate Honors Program

Originally, the Internet was a collaborative effort among researchers, but has since evolved into a marketplace comprising millions of commercial entities and billions of users who often have conflicting goals. My work builds off of the belief that we can secure the Internet by understanding and accounting for these competing interests.

I empirically measure security on the Internet to understand how security breaks down, and I apply economics and cryptography to design and build new systems with provable and usable security. I study the web's PKI, censorship avoidance, DNS root servers, and more. I have been fortunate to work with many wonderful collaborators. See my CV for more information.

I'm looking for students

I am a new Assistant Professor at the University of Maryland. I am looking for ambitious, motivated PhD and undergraduate students to work with. If you're interested in systems and network security, then:

Drop me a line

Join CS Honors

I am the Chair of the UMD CS Departmental Honors. This program helps students get involved in research, get more engaged with the department, and overall Do Good. If you are a UMD CS student with a good GPA and are looking for a challenge, please apply!

Learn More



An article giving an overview of our work on DNSSEC measurement is appearing in USENIX ;login:


Our paper measuring the fork in Ethereum was accepted to HotNets – congrats to first author, Lulu!


Our IEEE S&P paper on CRLite, a compact way to deliver all revocations to all clients, received the IEEE Cybersecurity Award for Innovation


Our paper on measuring DNSSEC received a Distinguished paper award at USENIX Security '17!


Our paper why DNSSEC is often poorly deployed will appear at ACM IMC '17.


DeTor, a system for provably avoiding attackers in Tor, and our measurement of DNSSEC have been accepted to to USENIX Security '17.


My research measures and improves real-world security. I envision an Internet where users have greater control and understanding of what happens to their data. Recently, I've been studying the web's certificate ecosystem, cloud computing, and censorship-avoidance.

Projects Papers


This Spring, I'm teaching:

I also helped design and run the Build it, break it, fix it secure programming competition that gives students firsthand experience with building secure code.

All My Classes


I'm on the committee for IEEE S&P 2019 (Oakland). Consider applying!

I was the General Chair for the ACM Symposium on SDN Research (SOSR) 2017 and for HotNets 2013. I regularly serve on program committees and NSF panels, and have also visited Congress to discuss increasing nationwide funding for scientific research.

All Service


    3411 A.V. Williams Bldg. (in MC2)
    301-405-8515 (I rarely check vmail)