I'm Research Director of the Usable Security & Privacy Group at the International Computer Science Institute (ICSI) and also hold a joint appointment in the Department of Electrical Engineering and Computer Sciences (EECS) at UC Berkeley, where I advise several graduate students. I direct the Berkeley Laboratory for Usable and Experimental Security (BLUES) along with David Wagner. I'm interested in decision-making with regard to computer security and online privacy, and then creating data-driven improvements to systems and interfaces that help users make better decisions.

Additionally, I'm also the CTO of AppCensus, which is a startup that I co-founded to commercialize my group's research on building tools to automatically perform privacy audits of mobile apps. I sometimes post on our blog.

Previously, I was a postdoc at Brown University working with Shriram Krishnamurthi on usable access control interfaces. Before that I was a graduate student at Carnegie Mellon University advised by Lorrie Cranor, and a member of the CUPS Lab. I've also performed research at NIST, Microsoft Research, and Xerox PARC.

If you are a student interested in working with me, I suggest you look at the BLUES website to get an idea of our previous and ongoing projects.



 [long] [short]