Update vania-goncalves.md

about/people/vania-goncalves.md

@@ -1,14 +1,14 @@
 ---
 title: Vânia Gonçalves
-position: Research Program Manager
+position: Research Manager
 status: current
 blog_author: vania
 ---
 
-Vânia is the Program Manager for Cloudflare Research. She leads the processes of tracking and delivering research work to both internal teams and external collaborations. She oversees engagement and outreach activities with academia and industry collaborations.
+Vânia is a Manager at Cloudflare Research. Before joining Cloudflare, Vânia spent several years doing research on Future Internet technologies and business models at the University of Brussels (VUB) and INESC TEC. She has also worked in various roles in R&D management, technology innovation and project management in academia and in industry with a particular focus on the media and health sectors. She held several advisor roles for technology innovation at startups. She was an Invited Assistant Professor at the Faculty of Engineering of the University of Porto. 
 
-Before joining Cloudflare, Vânia spent several years doing research on Future Internet technologies and business models at the University of Brussels (VUB) and INESC TEC. She has also worked in various roles in R&D management, technology innovation and project management in academia and in industry.
+Vânia holds a graduate degree in Informatics and Computer Engineering from the University of Porto, an MPhil in Technology Policy from the University of Cambridge and a dual Ph.D degree from the Vrije Universiteit Brussel and the University of Porto.
 
 ## Research Areas
 
-Privacy, Emerging Network Paradigms
+Privacy, Post-Quantum Cryptography, Network Architecture and Systems

outreach/academic-programs/interns/albert-gran.md

@@ -2,7 +2,6 @@
 title: Albert Gran Alcoz
 position: Research Intern
 year: 2023
-status: current
 ---
 
 Albert is a Research Intern at Cloudflare, supervised by Prof. Dr. Marwan Fayed, and a PhD student in the Networked Systems Group at ETH Zürich under the guidance of Prof. Dr. Laurent Vanbever. His research focuses on building data-driven infrastructures to enhance network performance and security.

publications/Barbosa2024.md

@@ -0,0 +1,19 @@
+---
+title: "X-Wing: The Hybrid KEM You've Been Looking For"
+year: 2024
+location: "IACR Communications in Cryptology (Volume: 1, Issue: 1, March 2024)."
+authors:
+  - Manuel Barbosa
+  - Deirdre Connolly
+  - João Diogo Duarte
+  - Aaron Kaiser
+  - Peter Schwabe
+  - Karolin Varner
+  - bas-westerbaan
+doi: 10.62056/a3qj89n4e
+related_interests:
+  - cryptography
+  - protocols
+---
+
+X-Wing is a hybrid key-encapsulation mechanism based on X25519 and ML-KEM-768. It is designed to be the sensible choice for most applications. The concrete choice of X25519 and ML-KEM-768 allows X-Wing to achieve improved efficiency compared to using a generic KEM combiner. In this paper, we introduce the X-Wing hybrid KEM construction and provide a proof of security. We show (1) that X-Wing is a classically IND-CCA secure KEM if the strong Diffie-Hellman assumption holds in the X25519 nominal group, and (2) that X-Wing is a post-quantum IND-CCA secure KEM if ML-KEM-768 is itself an IND-CCA secure KEM and SHA3-256 is secure when used as a pseudorandom function. The first result is proved in the ROM, whereas the second one holds in the standard model. Loosely speaking, this means X-Wing is secure if either X25519 or ML-KEM-768 is secure. We stress that these security guarantees and optimizations are only possible due to the concrete choices that were made, and it may not apply in the general case.

publications/Siby2023.md

@@ -9,7 +9,10 @@ authors:
   - marwan-fayed
   - nick-sullivan
   - Carmela Troncoso
+doi: 10.56553/popets-2023-0099
 related_interests:
   - cryptography
   - security
 ---
+
+Website fingerprinting (WF) is a well-known threat to users’ web privacy. New Internet standards, such as QUIC, include padding to support defenses against WF. Previous work on QUIC WF only analyzes the effectiveness of defenses when users are behind a VPN. Yet, this is not how most users browse the Internet. In this paper, we provide a comprehensive evaluation of QUIC-padding-based defenses against WFwhenusersdirectlybrowsetheweb,i.e.,without VPNs, HTTPS proxies, or other tunneling protocols. We confirm previous claims that network-layer padding cannot provide effective protection against powerful adversaries capable of observing all traffic traces. We show that the claims hold even against adversaries with constraints on traffic visibility and processing power. We then show that the current approach to web development, in which the use of third-party resources is the norm, impedes the effective use of padding-based defenses as it requires first and third parties to coordinate in order to thwart traffic analysis. We show that even when coordination is possible, in most cases, protection comes at a high cost.