I started an (occasional) personal blog, inaugural post on #protectedcomputing. davek.substack.com/p/journey…

Also, the demo of fake call detection that @Google made for me was an early version. In the launch today, the contact’s photo is also removed as another visual signal that it's likely an impersonator calling. Really cool to see that update in action as we found that impactful in our research together!

Happy for @Google to take part in this work for a more secure digital ecosystem for everyone.

We appreciate the public/private partnerships with governments around the world working with us to fight crime and protect the security and privacy of billions of users

Worried about “passkey lock-in”? This should help put your mind at ease: wired.com/story/passkey-port…

Putting aside their opinions on Wired, iVerify, and Palantir, the GrapheneOS account raises a lot of good points about how this "vulnerability" is way overblown and being misrepresented. And given how brutally critical of Google they often are, the fact that the GrapheneOS folks are coming out this hard in defense of them really shows how bad the reporting on this issue has been. The original report makes for a salacious headline but it falls apart really quickly when you actually look at the details.

@OpenAI claimed in their GPT-4 system card that it isn't effective at finding novel vulnerabilities. We show this is false. AI agents can autonomously find and exploit zero-day vulnerabilities. Paper: arxiv.org/abs/2406.01637 🧵 1/7

It's going to be a big day tomorrow! All that's left is to🙏 to the demo gods and try to get some good 💤's

Proud @Google joined @CISAgov others to sign today's secure by design pledge.W/new tech&growing cyber threats I'm proud to work for a company w/such a strong security culture. That's why we've been using secure by design for years&amplify its criticality cisa.gov/securebydesign/pled…

It's #WorldPasswordDay!! At @Google we're celebrating the journey on deprecating passwords! We're happy to report passkeys have been used 1B times across 400M Google Accounts. We're also sharing how we'll use them to protect high risk users blog.google/technology/safet…

Why AVF? open.substack.com/pub/davek/…

Thanks to AI Cyber Challenge collaborators such as @Google, competing teams will have access to state-of-the-art large language models and resources that uniquely support their development process. youtube.com/watch?v=JawYn4b_…

Two schools have both teams in the NCAA Final 4, first time! Win or lose, congrats NC State and UConn!

While at the Singapore Member Meeting, we seized the moment and recognized the inspiring women of the Alliance whose transformative work not only changes the world in which we live but also breaks barriers for the generations of women who will follow! #csaiot #womenintech x.com/csaiot/status/17702389…