
Research Lead
Christopher Wood is a Research Lead at Cloudflare Research. Outside of Cloudflare, he is co-chair of the TLS and MASQUE working groups at the IETF, as well as the PEARG research group in the IRTF. Before joining Cloudflare, Christopher worked on transport security, privacy, and cryptography engineering at Apple, as well as future Internet architectures at Xerox PARC. His interests lay at the intersection of network protocol design, communications security, privacy, and applied cryptography. At Cloudflare, he leads projects focused on security and privacy enhancements to a variety of systems, protocols, and applications. Christopher holds a Ph.D. in computer science from UC Irvine.
Research Areas
Networking, Cryptography, Privacy, Security
Projects
Publications
2023Security Analysis of Signature Schemes with Key Blinding
2023RFC 9380: Hashing to Elliptic Curves
Internet Research Task Force (IRTF). 2023.
Armando Faz-Hernández,
Sam Scott,
Nick Sullivan,
Riad S. Wahby,
Christopher A. Wood
2023Password-Authenticated TLS via OPAQUE and Post-Handshake Authentication
2023Post-Quantum Privacy Pass via Post-Quantum Anonymous Credentials
2023Evaluating practical QUIC website fingerprinting defenses for the masses
The 23rd Privacy Enhancing Technologies Symposium (PETS), July 10-15, Lausanne, Switzerland. 2023.
Sandra Siby,
Ludovic Barman,
Christopher A. Wood,
Marwan Fayed,
Nick Sullivan,
Carmela Troncoso
2023Hot Topics in Security and Privacy Standardization at the IETF and Beyond
IEEE Security & Privacy (Volume: 21, Issue: 2, March-April 2023).
Christopher A. Wood
2022This is not the padding you are looking for! On the ineffectiveness of QUIC PADDING against website fingerprinting
IETF 113 Conference. 2022.
Ludovic Barman,
Sandra Siby,
Christopher A. Wood,
Marwan Fayed,
Nick Sullivan,
Carmela Troncoso
2022RFC 9180: Hybrid Public Key Encryption
Internet Research Task Force (IRTF). 2022.
Richard Barnes,
Karthik Bhargavan,
Benjamin Lipp,
Christopher A. Wood
2022RFC 9258: Importing External Pre-Shared Keys (PSKs) for TLS 1.3
Internet Engineering Task Force (IETF). 2022.
David Benjamin,
Christopher A. Wood
2022A Symbolic Analysis of Privacy for TLS 1.3 with Encrypted Client Hello
ACM Conference on Computer and Communications Security (CCS) 2022, November 7-11, Los Angeles, U.S.A. 2022.
Karthikeyan Bhargavan,
Vincent Cheval,
Christopher A. Wood
2022RFC 9257: Guidance for External Pre-Shared Key (PSK) Usage in TLS
Internet Engineering Task Force (IETF). 2022.
Russ Housley,
Jonathan Hoyland,
Mohit Sethi,
Christopher A. Wood
2022RFC 9230: Oblivious DNS over HTTPS
Internet Engineering Task Force (IETF). 2022.
Eric Kinnear,
Patrick McManus,
Tommy Pauly,
Tanya Verma,
Christopher A. Wood
2022Might I Get Pwned: A Second Generation Compromised Credential Checking Service
31th USENIX Security Symposium (USENIX Security 22).
Bijeeta Pal,
Mazharul Islam,
Marina Sanusi Bohuk,
Nick Sullivan,
Luke Valenta,
Tara Whalen,
Christopher A. Wood,
Thomas Ristenpart,
Rahul Chattejee
2022RFC 9149: TLS Ticket Requests
Internet Engineering Task Force (IETF). 2022.
Tommy Pauly,
David Schinazi,
Christopher A. Wood
2022The Decoupling Principle: A Practical Privacy Framework
The 21st ACM Workshop on Hot Topics in Networks (HotNets’22), November 14–15, 2022, Austin, TX, USA
Paul Schmitt,
Jana Iyengar,
Christopher A. Wood,
Barath Raghavan
2022Respect the ORIGIN! A Best-case Evaluation of Connection Coalescing
ACM Internet Measurement Conference 2022, October 25-27, France. 2022.
Sudheesh Singanamalla,
Talha Paracha,
Suleman Ahmad,
Jonathan Hoyland,
Luke Valenta,
Yevgen Safronov,
Peter Wu,
Andrew Galloni,
Kurtis Heimerl,
Nick Sullivan,
Christopher A. Wood,
Marwan Fayed
2022RFC 9292: Binary Representation of HTTP Messages
Internet Engineering Task Force (IETF). 2022.
Martin Thomson,
Christopher A. Wood
2022A Fast and Simple Partially Oblivious PRF, with Applications
Advances in Cryptology – EUROCRYPT 2022: 41st Annual International Conference on the Theory and Applications of Cryptographic Techniques, Trondheim, Norway, May 30 – June 3, pp. 674–705, 2022.
Nirvan Tyagi,
Sofía Celi,
Thomas Ristenpart,
Nick Sullivan,
Stefano Tessaro,
Christopher A. Wood
2021Implementing and measuring KEMTLS
Progress in Cryptology – LATINCRYPT 2021, Lecture Notes in Computer Science(), vol 12912. Springer, 2021.
Sofía Celi,
Armando Faz-Hernández,
Nick Sullivan,
Goutam Tamvada,
Luke Valenta,
Thom Wiggers,
Bas Westerbaan,
Christopher A. Wood
2021The Ties that un-Bind: Decoupling IP from web services and sockets for robust addressing agility at CDN-scale
Proceedings of the 2021 ACM SIGCOMM 2021 Conference, pp. 433–446. 2021.
Marwan Fayed,
Lorenz Bauer,
Vasilis Giotsas,
Sami Kerola,
Marek Majkowski,
Pavel Odinstov,
Jakub Sitnicki,
Taejoong Chung,
Dave Levin,
Alan Mislove,
Christopher A. Wood,
Nick Sullivan
2021Oblivious DNS over HTTPS (ODoH): A Practical Privacy Enhancement to DNS
Proceedings on Privacy Enhancing Technologies 2021, Volume 4, pp. 575–592. 2021.
Sudheesh Singanamalla,
Pop Chunhapanya,
Jonathan Hoyland,
Marek Vavruša,
Tanya Verma,
Peter Wu,
Marwan Fayed,
Kurtis Heimerl,
Nick Sullivan,
Christopher A. Wood
2020RFC 8937: Randomness Improvements for Security Protocols
Internet Research Task Force (IRTF). 2020.
Cas Cremers,
Luke Garratt,
Stanislav Smyshlyaev,
Nick Sullivan,
Christopher A. Wood
2020RFC 8922: A Survey of the Interaction between Security Protocols and Transport Services
Internet Engineering Task Force (IETF). 2020.
Theresa Enghardt,
Tommy Pauly,
Colin Perkins,
Kyle Rose,
Christopher A. Wood
Blog posts
- Privacy Gateway: a privacy preserving proxy built on Internet standards
- Privacy Gateway:基于互联网标准的隐私保护代理
- Privacy Gateway:基於網際網路標準建置的隱私保護代理程式
- Privacy Gateway: 인터넷 표준에 구축된 개인정보 보호 프록시
- Privacy Gateway:インターネット標準に基づき構築されたプライバシー保護プロキシ
- Stronger than a promise: proving Oblivious HTTP privacy properties
- 比承諾更強大:證明 Oblivious HTTP 的隱私屬性
- 比承诺更具说服力:证明 Oblivious HTTP 的隐私属性
- Unlocking QUIC’s proxying potential with MASQUE
- A Primer on Proxies
- Announcing experimental DDR in 1.1.1.1
- HPKE: Standardizing public-key encryption (finally!)
- Privacy-Preserving Compromised Credential Checking
- Cloudflare and the IETF
- Handshake Encryption: Endgame (an ECH update)