(Recipient of LinkedIn Ph.D. Fellowship, 2026-2027)
My dissertation research focus is to design provably correct runtime monitoring mechanisms for enforcing safety and security properties in systems without access to the source code. I focus on systems with hierarchical execution structures, like trees, and have designed an automata-theoretic monitoring framework based on finite state automaton [2] and visibly pushdown automaton [3] (for control flow properties). A central theme of this monitoring mechanism is that it is distributed, non-invasive, and treats the system as a blackbox. To demonstrate the practical impact of my research, I’ve implemented the runtime monitors — SafeTree [3] and SafeNom [4] — for microservice applications. The class of safety properties enforceable by this framework naturally transfer to various domains, like finance, healthcare, and safety-critical cyber-physical systems.

Selected First-Author Publications

(Submitted)

[4] SafeNom: Data-Aware Policies for Microservices

Karuna Grewal, Brighten Godfrey, Justin Hsu
OOPSLA'25

[3] SafeTree: Expressive Tree Policies for Microservices [slides] [talk]

Karuna Grewal, Brighten Godfrey, Justin Hsu
HotNets'23

[2] Expressive Policies for Microservice Networks [slides]

Karuna Grewal, Brighten Godfrey, Justin Hsu
PLDI'22

[1] P4BID: Information Flow Control in P4 [slides] [talk]

Karuna Grewal, Loris D'Antoni, Justin Hsu

Full publication record can be found on dblp or Google scholar.