Research
My research interests lie at the intersection of distributed systems, applied cryptography, and digital identity. I'm particularly interested in systems that give individuals control over their personal data while maintaining interoperability across organizations and borders.
Decentralized Identity & DIDs
Decentralized Identifiers (DIDs) provide a foundation for self-sovereign identity by allowing entities to create and control their own identifiers without permission from any central authority. I study the design trade-offs between different DID methods (did:web, did:peer, did:key) and their implications for security, privacy, and scalability.
Privacy-Preserving Credential Systems
Verifiable Credentials enable portable, tamper-evident digital attestations. I'm interested in selective disclosure mechanisms (BBS+ signatures, SD-JWT) that allow holders to share only the minimum necessary information, and in zero-knowledge proof techniques that enable predicate proofs without revealing underlying data.
Trust Frameworks & Governance
Decentralized systems still need trust anchors. I work on trust registry architectures that allow ecosystems to define and enforce governance rules — who can issue what, which credentials are accepted where, and how trust decisions are made at scale.
DIDComm & Secure Messaging
DIDComm is a messaging protocol that enables secure, private communication between identity agents. I work on production implementations of DIDComm v2, including message routing, encryption, and protocol negotiation for credential exchange workflows.
Open Questions
- 1.How can trust registries be made both decentralized and practically governable?
- 2.What are the formal privacy guarantees of different selective disclosure schemes under realistic adversarial models?
- 3.How can SSI systems achieve meaningful interoperability across jurisdictions with different legal frameworks?
- 4.What are effective revocation mechanisms that preserve holder privacy?