Cloud Security
We’re working on building the most secure cloud infrastructure platforms. Our research focuses on ensuring the integrity of everything in the stack, reducing the attack surface of cloud systems, and advancing the use of confidential computing and hardware security modules.
Our work
Simplifying cloud security policies with AI
Technical noteJulian Stephen and Shriti PriyaHow do you measure innovation?
NewsDarío GilThe ultimate tool for data privacy: Fully homomorphic encryption
Technical noteOmri Soceanu and Ronen LevyExtending server integrity across space and time with Durable Attestation
Technical noteDaniele Buono, Marcio Augusto de Lima e Silva, Maurizio Drocco, Gheorghe Almasi, and James BottomleyStrengthening cloud security with confidential computing
Technical noteRick BoivieWhat is confidential computing?
ExplainerDaniele Buono, James Bottomley, Hubertus Franke, and Robert Senger- See more of our work on Cloud Security
Projects
A cloud-native system telemetry framework that enables the creation of security analytics on a scalable, pluggable open-source platform.
Publications
A Policy Framework for Securing Cloud APIs by Combining Application Context with Generative AI
- Shriti Priya
- Julian James Stephen
- 2024
- ACSAC 2024
From Confidential Computing to Zero Trust, Come Along for the (Bumpy?) Ride
- Mengmei Ye
- Sandhya Koteshwara
- et al.
- 2024
- MICRO 2024
Crossing Shifted Moats: Replacing Old Bridges with New Tunnels to Confidential Containers
- Ray Valdez
- Md Salman Ahmed
- et al.
- 2024
- CCS 2024
Manipulating OpenFlow Link Discovery Packet Forwarding for Topology Poisoning
- Mingming Chen
- Tom La Porta
- et al.
- 2024
- CCS 2024
SeaK: Rethinking the Design of a Secure Allocator for OS Kernel
- Zicheng Wang
- Yicheng Guang
- et al.
- 2024
- USENIX Security 2024
True Attacks, Attack Attempts, or Benign Triggers? An Empirical Measurement of Network Alerts in a Security Operations Center
- Limin Yang
- Zhi Chen
- et al.
- 2024
- USENIX Security 2024