Not all of my work makes it into papers, but some of my published work explains why Nigerian scammers say they’re from Nigeria, why those scary numbers you hear about billions lost to cybercrime are junk, why you’re right to suspect that most security advice is a waste of time, and why security can seem more religion than science.
Here’s a short profile of me done by MSR. Some media coverage of my work: All Things Considered (NPR), the Boston Globe, the NY Times, Wired, Ars Technica, theAtlantic, Bloomberg TV, The Economist, the Wall St Journal. An OpEd I wrote for the NY Times.
Email: firstname at microsoft dot com