I’m a researcher in the Systems Group at Microsoft Research Redmond. My research interests are operating systems and systems security, with a particular focus on problems driven by hardware evolution, or close to the hardware/software boundary. I build confidential computing systems that protect the confidentiality and integrity of user computations in shared infrastructure even against untrusted hosts and malicious administrators.
See my work page for research and publications, or GitHub for code. This site exists primarily as a container for archived technical notes imported from a wiki, and even older blog posts imported from LiveJournal.