Designing secure distributed applications requires an unreasonable amount of vigilance. I study language-based approaches to security and distributed computing that help developers build safer and more performant programs by construction.

News:

• MITnews article: Making Web applications more efficient
  
• Fabric on Slashdot
• Cornell Chronicle article: 'Fabric' would tighten the weave of online security

Current Projects

• StatusQuo
  Automatically refactoring database applications for performance.
• Fabric
  A language and system for scalable and secure distributed computation on persistent objects.
• Jif
  An extension of Java with static information flow control.
• Polyglot
  An extensible compiler framework for Java.

Publications

• StatusQuo: Making familiar abstractions perform using program analysis (best paper, CIDR'13)

  Program analysis and synthesis enable seamlessly moving data and functionality between app and database servers.

• Automatic partitioning of database applications (VLDB '12)

  For consistently good performance, Pyxis automatically migrates computation between the client and the database server.

• Sharing mobile code securely with information flow control (Oakland'12)

  A new architecture for secure mobile code, supporting secure use, publication, and sharing of code across trust domains.

Activities

• Programming Languages Discussion Group
  A weekly seminar where PL students discuss current PL research.
• SIG|RED
  A new computer science blog run by Cornell CS PhD students.
• CS Hockey
  Enthusiastic if not advanced hockey at Cornell's Lynah Rink.

Awards

I am proud to be a recipient of the 2011 NDSEG Fellowship.