My primary research objective is to understand and improve the
security properties of firmware and operating systems. I like to
think about complex, interconnected systems, and attempt to
understand security vulnerabilities in the context in which they
I think that, rather than focusing on a certain type of vulnerability, mitigation, or technique, security vulnerabilities should be seen as the result of systematic issues. This motivates my research.