Publications

Selected peer-reviewed work in trusted computing, network security, and cloud forensics. The full list lives on DBLP and Google Scholar.

Standards and drafts

• RFC 9783 — Arm’s Platform Security Architecture (PSA) Attestation Token (2025)
• draft-pastor-i2nsf-nsf-remote-attestation-07 — IETF I2NSF
• draft-tschofenig-rats-psa-token-05 — IETF RATS
• draft-shaw-rats-rear-00 — IETF RATS

Papers

2017

• Separating Translation from Protection in Address Spaces with Dynamic Remapping — HotOS 2017
• Exploring Granular Flow Integrity for Interconnected Trusted Platforms — TrustCom/BigDataSE/ICESS 2017
• Trust in SDN/NFV Environments — Guide to Security in SDN and NFV (book chapter, 2017)

2015

• Virtualized Security at the Network Edge: A User-Centric Approach — IEEE Communications Magazine 53(4)
• The Trust Problem in Modern Network Infrastructures — CSP Forum 2015
• Towards Trusted Software-Defined Networks Using a Hardware-Based Integrity Measurement Architecture — NetSoft 2015

2014

• Forensic Virtual Machines: Dynamic Defence in the Cloud via Introspection — IC2E 2014

Patents

Granted patents in hardware and platform security. See Google Scholar for the current list.