illustration of lock, four asterisks and a shield with a fingerprint on it on a green gradient background

Security, privacy, and cryptography

Leveraging Large Language Models for Automated Proof Synthesis in Rust

photos of PhD students Anunay Kulshrestha and Karan Newatia with a photo of Senior Cryptographer Josh Benaloh in the middle with a microphone icon on a blue and purple gradient background

Intern Insights: Dr. Josh Benaloh with Anunay Kulshrestha and Karan Newatia

Bayes Security (β*, higher better) of DP-SGD against membership and attribute inference on the Adult and Purchase datasets as a function of the number of training steps. The green dashed line shows the corresponding DP budget (ε). Membership and attribute inference curves decrease monotonically as the model is trained for longer and the accuracy and DP budget grow.

Closed-Form Bounds for DP-SGD against Record-level Inference

ProvCam: A Camera Module with Self-Contained TCB for Producing Verifiable Videos

Current selections

Sort by: Most recent

Clear selections

Search within these results

Content Types

Published Date

Career Opportunity

Research Intern – MSR Systems Research Group – Redmond

Posted: November 4, 2025

Location: Redmond, WA, US

Research Area(s): Programming languages and software engineering, Security, privacy, and cryptography, Systems and networking

The Systems Research Group in Microsoft Research is devoted to advancing the state of the art in distributed systems and operating systems. Our aim is to make systems verifiably correct, scalable, fault-tolerant, manageable, fast and…

Microsoft Research Blog

RedCodeAgent: Automatic red-teaming agent against diverse code agents

November 4, 2025 | Chengquan Guo , Chulin Xie, Yu Yang, Zhaorun Chen, Zinan Lin, Xander Davies, Yarin Gal, Dawn Song, Bo Li

Code agents help streamline software development workflows, but may also introduce critical security risks. Learn how RedCodeAgent automates and improves “red-teaming” attack simulations to help uncover real-world threats that other methods overlook.

white icons on blue and green gradient background

Publication

Whisper Leak: a side-channel attack on Large Language Models

Geoff McDonald, Jonathan Bar Or

November 2025

Career Opportunity

Applied Scientist – Azure CXP Data & Applied Sciences

Posted: October 25, 2025

Location: Atlanta, GA, US; Charlotte, NC, US; Dallas, TX, US; Redmond, WA, US; Reston, Virginia, US; San Jose, CA, US

Research Area(s): Artificial intelligence, Data platforms and analytics, Security, privacy, and cryptography, Systems and networking

In the new era of AI, this role within Azure CXP Data & Applied Sciences team will provide you the opportunity to work on cutting-edge GenAI and ML (Machine Learning) solutions that drive specific, measurable,…

Video

IronDict: Transparent Dictionaries from Polynomial Commitments

October 17, 2025 | Hossein Hafezi, Melissa Chase

We present IronDict, a transparent dictionary construction based on polynomial commitment schemes. Transparent dictionaries enable an untrusted server to maintain a mutable dictionary and provably serve clients lookup queries. A major open challenge is supporting…

34:11

Video

Lattice-Based Accumulator and Application to Anonymous Credential Revocation

October 17, 2025 | Victor Youdom Kemmoe, Betül Durak

An accumulator is a cryptographic system for compactly representing a set of elements such that every element in the set has a short membership witness. A dynamic accumulator, furthermore, allows elements to be added to…

54:46

Video

Efficient Secure Aggregation for Federated Learning

October 17, 2025 | Varun  Madathil, Melissa Chase

Federated Learning (FL) trains a global model by having each selected device push only its model update to a central server, keeping raw data local. However, those updates can still leak sensitive information unless the server…

56:10

Publication

IOValve: Leakage-Free I/O Sandbox for Large-Scale Untrusted Data Processing

Sangho Lee, Jules Drean, Yue Tan, Marcus Peinado

32nd ACM Conference on Computer and Communications Security (CCS 2025) | October 2025

Video

Evaluating Privacy Policies under Modern Privacy Laws At Scale: An LLM-Based Automated Approach

October 7, 2025 | Qinge Xie

Website privacy policies detail an online service’s information practices, including how they handle user data and rights. For many sites, these disclosures are now necessitated by a growing set of privacy regulations, such as GDPR…

graphical user interface, text, application

28:52

Project

Paraphrase Project

The Paraphrase Project addresses a critical and emerging risk: as generative AI and synthetic biology advance, there is a growing possibility that open-source AI tools could be misused to design biological toxins that evade current…

Security, privacy, and cryptography

Highlights