Publications

• LavaRand in Production: The Nitty-Gritty Technical Details
• Randomness 101: LavaRand in Production
• Understanding Our Cache and the Web Cache Deception Attack

Talks

RustConf 2024 - Safety in an Unsafe World

In September 2024, I gave a talk on using Rust to ensure high-level semantic safety properties in large-scale projects entitled "Safety in an Unsafe World" at RustConf. Here are the video, the slides, and the references.

Rust Belt Rust 2018 - Move Fast and Don't Break Things

In October 2018, I gave a talk on Fuchsia's pure-Rust networking stack entitled "Move Fast and Don't Break Things" at Rust Belt Rust. Here's the video, and here are the slides.

CS166

These are lectures which I gave as the Head TA of Brown's CS166 (Computer Systems Security) in the spring of 2016. Unfortunately, no lecture notes are available, only slide decks. Also note that many of these lectures were split between myself and another lecturer, so not all slide decks represent an entire lecture.

• Introduction to Security I
• Introduction to Security II
• Passwords
• OS Security III (Implicit Behavior and Code as Data)
• Web Security I (Web Technology Extras - Anatomy of a Web Request)
• Web Security III (Cross-Site Scripting)
• Web Security IV (Attacking the Server)
• Network Security I (Ethernet/IP Routing, ARP)
• Network Security V (Denial of Service)
• Network Security VI (WiFi Identification and Authentication)
• Trust I
• Trust II
• Social Engineering
• Usability
• Systems Security I
• Systems Security II

CS1951-E

These are lectures which I gave as the Head TA of Brown's CS1951-E (Computer Systems Security: Principles and Practice) in the spring of 2015. Unfortunately, no lecture notes are available, only slide decks.

• Trust
• Web Attacks III
• Defense in Depth
• Penetration Testing

Boston Go Meetup - Reflection

In March 2014, I gave a talk on reflection in Go at the Boston Go Meetup. Here are the slides from that talk.