Abstract: The past five years have seen thousands of academic papers devoted to the study of adversarial examples in machine learning. Yet, despite countless proposed defenses, robustness remains evasive even for the simplest toy threat models. I’ll discuss recent work that shows how defenses degrade when extended to multiple perturbation types, and how models can
Abstract: Firewalls are a fundamental tool for managing and protecting computer networks.They not only permit specifying which packets are allowed to enter a network, but also how these packets are modified by translating IP addresses and performing port redirection.Configuring a firewall is notoriously hard.Equally difficult are policy maintenance and refactoring, as well as porting a
Abstract: The first part of this talk introduces PROTECT, a Platform for Robust Threshold Cryptography. The design of Threshold and Proactive cryptographic systems has received attention in recently due to the rise of cloud services, blockchain and crypto-currency technologies. However the bulk of literature in the threshold cryptography area assumes synchronous networks. The goal in
Abstract: Intel SGX enables protected enclaves on untrusted computing platforms. An important part of SGX is its remote attestation mechanism that allows a remote verifier to check that an enclave was correctly constructed before provisioning secrets to it. However, SGX attestation is vulnerable to relay attacks where the attacker, such as malicious OS, redirects the
Abstract: Hardening data protection using multiple methods rather than solely encryption is of paramount importance when considering continuous and powerful attacks to spy private and confidential information. Our research focuses on reinforcing data protection using a combination of data fragmentation, encryption, and dispersion. Each operation participates in the increasing of the protection level. We aim
Abstract: In this talk we will share experiences in building user-facing privacy tools at Google. We will walk you through the process and challenges of redesigning the Incognito mode in Chrome that many of you will be familiar with. We will debunk a few myths on how users allow and deny Android permissions. Finally, we
Abstract: Blockchains have received considerable attention both in academia and industry. Much of this work has focused on how to improve blockchains themselves either in terms of performance, features, or theoretical underpinnings. This talk will focus on a different question: what can blockchains do for computer security and cryptography? It will cover blockchains as a
Abstract: While showing great promise, Bitcoin requires users to wait tens of minutes for transactions to commit, and even then, offering only probabilistic guarantees. In this talk we are going to address the challenges of scaling decentralised payment systems. The first part of the talk introduces ByzCoin, a novel Byzantine consensus protocol that leverages scalable collective signing
Abstract: Despite their usage of pseudonyms rather than persistent identifiers, most existing cryptocurrenciesdo not provide users with any meaningful levels of privacy. This has prompted the creation of privacy enhancedcryptocurrencies such as Monero and Zcash, which are specifically designed to counteract thetracking analysis possible in currencies like Bitcoin. These cryptocurrencies, however, also suffer fromsome drawbacks:
Abstract: Since the initial invention of differential privacy in 2005, the academic community has proposed a large number of variants of the original definition. What are the motivations behind these variants? Which one should you use in each context? In this talk, I’ll present ongoing research towards systematizing this body of research, propose a classification