Envoy
Contributed primarily to TLS and JWT authentication filters in Envoy. Work focused on improving authentication paths and mTLS integration used by internal services.
Projects
PhishCCA
LSTM model to classify phishing sites using HTML content and TLS certificate analysis. Achieved accuracy of ~77% (HTML) and ~98% (TLS features).
CoMpK
Isolation technique to isolate data in secure private compartments using Intel MPK, static analysis and a hypervisor. Implemented prototype demonstrating intra-process isolation.
Firefox
Contributed defensive filters for Content Security Policy (CSP) directives in Firefox to better comply with HTTP specifications and improve security.
High Assurance Booting for i.MX6 Tablet
Modified kernel and bootloader of Genode OS to include HAB for secure booting. Part of secure tablet development used in defense research projects.