illustration of lock, four asterisks and a shield with a fingerprint on it on a green gradient background

Security, privacy, and cryptography

lock icon on green background

Leveraging Large Language Models for Automated Proof Synthesis in Rust

photos of PhD students Anunay Kulshrestha and Karan Newatia with a photo of Senior Cryptographer Josh Benaloh in the middle with a microphone icon on a blue and purple gradient background

Intern Insights: Dr. Josh Benaloh with Anunay Kulshrestha and Karan Newatia

Bayes Security (β*, higher better) of DP-SGD against membership and attribute inference on the Adult and Purchase datasets as a function of the number of training steps. The green dashed line shows the corresponding DP budget (ε). Membership and attribute inference curves decrease monotonically as the model is trained for longer and the accuracy and DP budget grow.

Closed-Form Bounds for DP-SGD against Record-level Inference

MSR Systems Networking Graphic

ProvCam: A Camera Module with Self-Contained TCB for Producing Verifiable Videos

Current selections

Sort by: Most recent

Clear selections

Publication

RedCodeAgent: Automatic Red-teaming Agent against Diverse Code Agents

Chengquan Guo, Chulin Xie, Yu Yang, Zhaorun Chen, Zinan Lin, Xander Davies, Yarin Gal, Dawn Song, Bo Li

October 2025

Publication

Comparison requires valid measurement: Rethinking attack success rate comparisons in AI red teaming

Alex Chouldechova, A. Feder Cooper, Solon Barocas, Abhinav Palia, Dan Vann, Hanna Wallach

NeurIPS 2025 | October 2025

Publication

Secure Parsing and Serializing with Separation Logic Applied to CBOR, CDDL, and COSE

Tahina Ramananandro, Gabriel Ebner, Guido Martínez, Nikhil Swamy

2025 Computer and Communications Security | October 2025

Video

Microsoft Research India – The lab culture

September 30, 2025 | P. Anandan, Indrani Medhi Thies, B. Ashok, Sriram Rajamani, Vidhya Yella Reddy, Manik Varma, Kalika Bali, Jayashree Mohan, Venkat Padmanabhan

Watch the founder, former and current leaders, and researchers at the Microsoft Research India lab talk about its unique culture. They reflect on their journeys, growth, and what makes the lab such a great place…

a group of people from the Microsoft Research India Lab posing for a photo

Video

Microsoft Research India – The evolution

September 30, 2025 | Venkat Padmanabhan, P. Anandan, Rick Rashid, Peter Lee, Doug Burger, Sriram Rajamani

Learn about Microsoft Research India’s journey from its inception to becoming a leading research center in computer science in India.

Peter Lee, Sriram Rajamani, Venkat Padmanabhan, and Doug Burger standing together smiling

Video

Understanding How Users Prepare for and React to Smartphone Theft

September 24, 2025 | Divyanshu Bhardwaj

Smartphone theft is common, yet little research explores how users prepare for or respond to such incidents. To address this gap in the literature, we conducted 20 semi-structured interviews with victims who had experienced smartphone…

graphical user interface, application, website

Video

When LLMs Go Online: The Emerging Threat of Web-Enabled LLMs

September 24, 2025 | Hanna Kim

Recent advancements in Large Language Models (LLMs) have established them as agentic systems capable of planning and interacting with various tools. These LLM agents are often paired with web-based tools, enabling access to diverse sources…

graphical user interface, website

Video

A Formal Analysis of Apple’s iMessage PQ3 Protocol

September 24, 2025 | Felix Linker

We present the formal verification of Apple’s iMessage PQ3, a highly performant, device-to-device messaging protocol offering strong security guarantees even against an adversary with quantum computing capabilities. PQ3 leverages Apple’s identity services together with a…

Video

Email Spoofing with SMTP Smuggling: How the Shared Email Infrastructures Magnify this Vulnerability

September 24, 2025 | Gang Wang

Email spoofing is a critical technique used in phishing attacks to impersonate a trusted sender. SMTP smuggling is a new vulnerability that allows adversaries to perform email spoofing while bypassing existing authentication protocols such as…

graphical user interface, application

Video

A Framework for Abusability Analysis: The Case of Passkeys in Interpersonal Threat Models

September 24, 2025 | Alaa Daffalla

The recent rollout of passkeys by hundreds of web services online is the largest attempt yet to achieve the goal of passwordless authentication. However, new authentication mechanisms can often overlook the unique threats faced by…