Daniel De Almeida Braga
My research focuses on vulnerabilities in cryptographic implementations, which can be related to the core protocol (if there is an issue in the specification) or implementation-specific (side channels or any information leak). I am also developing a strong interest in microarchitectural security, with practical exploitation.
Starting April 1st, I will be a research engineer at INRIA, team CAPSULE, working on various ways to improve post-quantum cryptography implementations’ security. I got my PhD from the Universisty of Rennes in 2022, with the supervision of Pierre-Alain Fouque and Mohamed Sabt in the SPICY team (former EMSEC) at IRISA in Rennes. My work was awarded the Google PhD fellowship in Privacy & Security, which allowed me to visit Daniel Gruss’s team CoreSec at Graz University of Technology for 4 months in 2023.
Before starting my PhD, I graduated from Rennes 1’s Cryptography Master in 2018, where I acquired the mathematical background needed to understand the underlying mechanisms of cryptography. Then, I worked one year at Amossys (Rennes, France) as a security analyst, where I could get my hands on real-world crypto implementations. It also pushed me to enlarge my CS knowledge and develop more practical skills.
news
May 3, 2023 | I was awarded the Best Thesis award in Mathematics/Computer Science from Fondation Rennes. |
---|---|
Sep 30, 2022 | I am part of Usenix Security’23 Artifact Review committee. |
Sep 2, 2022 | I am a recipient of 2022 Google PhD Fellowship in Privacy and Security. |
Jul 1, 2022 | Our work on recovering passwords from leaky WPA3 implementations was nominated at Pwnie Award. |
Nov 5, 2021 | I participated to REDOCS 2021: “Risques des objets connectés sur la vie privée” avec la CNIL |
awards
May 3, 2023 | Best Thesis award in Mathematics/Computer Science from Fondation Rennes. |
---|---|
Sep 2, 2022 | Awarded with the Google PhD Fellowship 2022 (Privacy and Security). |
Mar 1, 2021 | ProtonMail Security Contributor following the disclosure of our PARASITE attack. |
Nov 8, 2020 | Second place at CSAW Applied Research competition (Europe) 2020 |
selected publications
services and events
- Artifact Reviewer: Usenix Security 2023
- Events: Real World Crypto 2022 (author but not speaker), Workshop on Attacks in Cryptography (WAC) 2021 (speaker),
- Hackathon: REDOCS 2021 (Privacy in IoT devices)