My current research is about making security usable for IT professionals (developers, system administrators and such) that lack a specialized training in computer security. I focus on cryptographic interfaces (both programmable and command-line) of developer tools and software libraries. Currently, the emphasis is placed on X.509-capable libraries, such as OpenSSL, GnuTLS and NSS, paying special attention to the process of certificate creation and validation.
Before coming to usable security I was interested in randomness testing and helped develop the EACirc project, the automatic problem solver based on circuit-like representation and genetic programming.
I’m a Ph.D. candidate supervised by Vashek Matyas. My research efforts are supported by Red Hat Czech and co-supervised by Nikos Mavrogiannopoulos. Furthermore, we cooperate with psychologists from IRTIS.