Raluca Ada Popa's Homepage

I am an assistant professor at UC Berkeley. I am interested in security, systems, and applied cryptography.
I co-founded the RISELab, whose aim is to build systems that are secure and intelligent.

I am also a co-founder and the CTO of PreVeil, a security startup based on my research.

Before joining UC Berkeley, I did a one-year postdoc at ETH Zürich in the System Security group led by Prof. Srdjan Capkun. Before that, I completed my Ph.D. in computer science at MIT, my thesis being about building practical systems that compute on encrypted data. My advisor was Professor Nickolai Zeldovich, and I was also fortunate to work closely with: Professor Hari Balakrishnan (in systems), Professor Shafi Goldwasser, Professor Yael Kalai, and Professor Vinod Vaikuntanathan (in cryptography). I earned my Masters of Engineering in Computer Science in 2010 and my two Bachelors in Computer Science and Mathematics in 2009 from MIT.

Graduate students I'm currently advising:

Weikeng Chen
Yuncong Hu
Sam Kumar (with Prof. Dave Culler)
Pratyush Mishra (with Prof. Alessandro Chiesa)
Rishabh Poddar
Jeongseok Son (with Prof. Ion Stoica)
Wenting Zheng (with Prof. Ion Stoica)

I also mentor and/or work closely with Michael Andersen, Ankur Dave, and Stephanie Wang as well as a set of other graduate students in the RISELab.

Postdoc:

Chia-Che Tsai

Graduate students I advised who graduated:

Tobias Boelter -- now Senior Security Researcher at Samsung Research

In the past, I also worked closely with a number of other PhD students: Justine Sherry (now professor at CMU), Nikos Karapanos, and Raphael Bost.

Undergraduate students:

Jerry Chen
Ruta Jawale
Jianan Lu
Takeshi Mochida

My goal is to build secure systems, and my approach involves both systems and theory work. My group develops new security protocols, systems and architectures, as well as cryptographic schemes.

Publications
Impact
Press

Publications

Papers

Howard Wu, Wenting Zheng, Alessandro Chiesa, Raluca Ada Popa, and Ion Stoica.
DIZK: Distributing Zero Knowledge Proof Systems.
USENIX SECURITY 2018 (to appear).

Pratyush Mishra, Rishabh Poddar, Jerry Chen, Alessandro Chiesa, and Raluca Ada Popa.
Oblix: An Efficient Oblivious Search Index.
Oakland 2018 (IEEE S&P) (IEEE Symposium of Security and Privacy).

Rishabh Poddar, Chang Lan, Raluca Ada Popa, and Sylvia Ratnasamy.
SafeBricks: Securing Network Functions in the Cloud.
NSDI 2018 (USENIX Symposium of Networked Systems Design and Implementation).

Daniel Ho, Xin Wang, Wenting Zheng, Joseph Gonzalez, Raluca Ada Popa, and Ion Stoica.
High Accuracy Approximation of Secure Multiparty Neural Network Training.
AISys 2018.

Wenting Zheng, Frank Li, Raluca Ada Popa, Ion Stoica, and Rachit Agarwal.
MiniCrypt: Reconciling Encryption and Compression for Big Data Stores.
EuroSys 2017.

Ion Stoica, Dawn Song, Raluca Ada Popa, David A. Patterson, Michael W. Mahoney, Randy H. Katz, Anthony D. Joseph, Michael Jordan, Joseph M. Hellerstein, Joseph Gonzalez, Ken Goldberg, Ali Ghodsi, David E. Culler and Pieter Abbeel.
A Berkeley View of Systems Challenges for AI.
Technical Report 2017, UCB/EECS-2017-159, UC Berkeley.

Wenting Zheng, Ankur Dave, Jethro Beekman, Raluca Ada Popa, Joseph Gonzalez, and Ion Stoica.
Opaque: An Oblivious and Encrypted Distributed Analytics Platform.
NSDI 2017 (USENIX Symposium of Networked Systems Design and Implementation).

Nikolaos Karapanos, Alexandros Filios, Raluca Ada Popa, and Srdjan Capkun.
Verena: End-to-End Integrity Protection for Web Applications.
Oakland 2016 (IEEE S&P) (IEEE Symposium of Security and Privacy).

Chang Lan, Justine Sherry, Raluca Ada Popa, and Sylvia Ratnasamy.
Embark: Securely Outsourcing Middleboxes to the Cloud.
NSDI 2016 (USENIX Symposium on Networked Design and Implementation).

Rishabh Poddar, Tobias Boelter, and Raluca Ada Popa.
Arx: A Strongly Encrypted Database System.
Cryptology ePrint Archive, Report 2016/591.

Tobias Boelter, Rishabh Poddar, and Raluca Ada Popa.
A Secure One-Roundtrip Index for Range Queries.
Cryptology ePrint Archive, Report 2016/568.

Justine Sherry, Chang Lan, Raluca Ada Popa, and Sylvia Ratnasamy.
BlindBox: Deep Packet Inspection for Encrypted Traffic.
SIGCOMM 2015 (ACM Special Interest Group on Data Communication).

Raphael Bost, Raluca Ada Popa, Stephen Tu, and Shafi Goldwasser.
Machine Learning Classification Over Encrypted Data.
NDSS 2015 (Network and Distributed System Security Symposium).

Raluca Ada Popa and Nickolai Zeldovich.
How to Compute With Data You Can't See.
IEEE Spectrum 2015, 52(8):42-47.

Raluca Ada Popa, Nickolai Zeldovich and Hari Balakrishnan.
Guidelines for Using the CryptDB System Securely.
Cryptology ePrint Archive, Report 2015/979.

Raluca Ada Popa, Emily Stark, Jonas Helfer, Steven Valdez, Nickolai Zeldovich, M. Frans Kaashoek, and Hari Balakrishnan. Building Web Applications on Top of Encrypted Data Using Mylar.
USENIX ;login:, 29(4):22-27, August 2014.

Raluca Ada Popa, Emily Stark, Jonas Helfer, Steven Valdez, Nickolai Zeldovich, M. Frans Kaashoek, and Hari Balakrishnan.
Building Web Applications on Top of Encrypted Data Using Mylar.
NSDI 2014 (USENIX Symposium of Networked Systems Design and Implementation).

Raluca Ada Popa, Frank H. Li, and Nickolai Zeldovich.
An Ideal-Security Protocol for Order-Preserving Encoding. [BibTeX] [extended paper]
IEEE S&P/Oakland 2013 (IEEE Symposium on Security and Privacy).

(Alphabetical order:) Shafi Goldwasser, Yael Kalai, Raluca Ada Popa, Vinod Vaikuntanathan, and Nickolai Zeldovich.
How to Run Turing Machines on Encrypted Data. [BibTeX]
CRYPTO 2013 (International Cryptology Conference).

(Alphabetical order:) Shafi Goldwasser, Yael Kalai, Raluca Ada Popa, Vinod Vaikuntanathan, and Nickolai Zeldovich.
Reusable Garbled Circuits and Succinct Functional Encryption. [BibTeX] [extended paper]
STOC 2013 (ACM Symposium on Theory of Computing).
Selected for SIAM Journal of Computing Special Issue.

Raluca Ada Popa and Nickolai Zeldovich.
Multi-Key Searchable Encryption. (This is the searchable encryption scheme used in Mylar.)
Cryptology ePrint Archive, 2013/508.

Raluca Ada Popa, Catherine M. S. Redfield, Nickolai Zeldovich, and Hari Balakrishnan.
CryptDB: Processing Queries on an Encrypted Database.
CACM 2012 (Communications of the ACM), 55(9):103-111, with accompanying technical perspective.

Meelap Shah, Emily Stark, Raluca Ada Popa, and Nickolai Zeldovich.
Language Support for Efficient Computation over Encrypted Data.
Off the Beaten Track Workshop: Underrepresented Problems for Programming Language Researchers, 2012.

Raluca Ada Popa and Nickolai Zeldovich.
Cryptographic Treatment of CryptDB's Adjustable Join.
MIT-CSAIL-TR-2012-006, 2012.

Raluca Ada Popa, Catherine M. S. Redfield, Nickolai Zeldovich, and Hari Balakrishnan.
CryptDB: Protecting Confidentiality with Encrypted Query Processing. [BibTeX]
SOSP 2011 (ACM Symposium on Operating Systems Principles).
Selected as a CACM Research Highlight of 2011.

Raluca Ada Popa, Andrew J. Blumberg, Hari Balakrishnan, and Frank H. Li.
Privacy and Accountability for Location-Based Aggregate Statistics. [BibTeX]
CCS 2011 (ACM Conference on Computer and Communications Security).

Raluca Ada Popa, Jay Lorch, David Molnar, Helen J. Wang, and Li Zhuang.
Enabling Security in Cloud Storage SLAs with CloudProof. [BibTeX]
USENIX 2011 (USENIX Annual Technical Conference).

Carlo Curino, Evan P. C. Jones, Raluca Ada Popa, Nirmesh Malviya, Eugene Wu, Sam Madden, Hari Balakrishnan, and Nickolai Zeldovich.
Relational Cloud: A Database-as-a-Service for the Cloud. [BibTeX]
CIDR 2011 (Biennial Conference on Innovative Data Systems Research).

Raluca Ada Popa, Alessandro Chiesa, Tural Badirkhanli, and Muriel Médard.
Going Beyond Pollution Attacks: Forcing Byzantine Clients to Code Correctly.
(Work resulting from class project.) CoRR abs/1108.2080: 2011.

Raluca Ada Popa, Hari Balakrishnan, and Andrew J. Blumberg.
Protecting Privacy in Location-Based Vehicular Services. [BibTeX]
USENIX SECURITY 2009 (USENIX Security Symposium).

James Cowling, Dan Ports, Barbara Liskov, Raluca Ada Popa, and Abhijeet Gaikwad.
Census: Location-Aware Membership Management for Large-Scale Distributed Systems. [BibTeX]
USENIX 2009 (USENIX Annual Technical Conference).

(Alphabetical order:) Javed A. Aslam, Raluca Ada Popa, and Ronald L. Rivest.
On Auditing Elections When Precincts Have Different Sizes. [BibTeX]
EVT 2008 (USENIX/ACCURATE Electronic Voting Technology Workshop).

(Alphabetical order:) Javed A. Aslam, Raluca Ada Popa, and Ronald L. Rivest.
On Estimating the Size and Confidence of a Statistical Audit. [BibTeX]
EVT 2007 (USENIX/ACCURATE Electronic Voting Technology Workshop).

Shan Lu, Soyeon Park, Chongfeng Hu, Xiao Ma, Weihang Jiang, Zhenmin Li, Raluca Ada Popa, and Yuanyuan Zhou.
MUVI: Automatically Inferring Multi-Variable Access Correlations and Detecting Related Semantic and Concurrency Bugs. [BibTeX]
SOSP 2007 (ACM Symposium on Operating Systems Principles).

Theses

Raluca Ada Popa.
Building Practical Systems That Compute on Encrypted Data.
Ph.D. thesis, 2014.
Raluca Ada Popa.
Provable and Practical Location Privacy for Vehicular and Mobile Systems.
Masters thesis, 2010.
Awarded the 2010 Johnson award for best MIT CS Masters of Engineering thesis.

Raluca Ada Popa.
VPriv: Protecting Privacy in Location-Based Vehicular Services.
Bachelors thesis, 2009.
CRA Outstanding Undergraduate Award, Winner, nationwide.

Impact

A few companies or organizations used, adopted, or took some inspiration from CryptDB. Many of these got in touch with us and gave credit to CryptDB.

SAP AG's system SEEED	SAP AG developed a system called SEEED, which implements CryptDB's design on top of their HANA database system. SEEED uses most of the building blocks of CryptDB as well as the adjustable encryption (onion) strategy. Here are some references: Project SEEED, white paper.
Google's Encrypted BigQuery	Google has developed an experimental extension of the BigQuery client, known as Encrypted BigQuery, which was informed and motivated by the CryptDB paper. It offers client-side encryption for a subset of query types, using encryption building blocks similar to the RND, HOM, and DET used in CryptDB. Their code is available here.
Lincoln Laboratory	Lincoln Labs added the CryptDB design on top of their D4M Accumulo no-SQL engine (using the RND, DET, OPE and HOM building blocks).
Microsoft's Always Encrypted SQL Server	Microsoft's Always Encrypted SQL Server enables administrators to encrypt columns with building blocks like RND and DET in CryptDB. The service is now distributed as part of Microsoft's SQL Server. Microsoft's Cipherbase team worked on the creation of AlwaysEncrypted. Cipherbase is a follow-up system to CryptDB.
Skyhigh Networks	Skyhigh networks seems to be using most of the encryption building blocks in CryptDB. Skyhigh discusses these schemes here.
sql.mit.edu	sql.mit.edu is a SQL server at MIT hosting many MIT-ran applications. Volunteering users of Wordpress switched to running Wordpress through CryptDB, using our source code.
Startups based on CryptDB	Privic, a startup in Silicon Valley, and Cryptonor, a startup in Europe, are both based on CryptDB's design. CryptonorDB targets no-SQL databases.

All the companies above except two have been in touch with us already and confirmed the relationship of their system to CryptDB. We have not yet been in touch with Skyhigh networks and Microsoft's Always Encrypted team.

Mylar was used for a medical application:

Newton-Wellesley Hospital, Boston
The endometriosis medical application of this hospital is a web application that collects private information from patients suffering from the disease endometriosis. It was secured with the Mylar core package (no search). The application, together with Mylar, obtained approval from the Institutional Review Board (IRB), and was used for a study.

Press

CryptDB:

An MIT Magic Trick: Computing On Encrypted Databases Without Ever Decrypting Them. Andy Greenberg, Forbes Magazine, December 2011.
You want to crunch top-secret data securely? CryptDB may be the app for that. Barb Darrow, GigaOM, April 2013.
MIT Software Allows Queries On Encrypted Databases. Slashdot, December 2011.
CryptDB: Encrypted MySQL. Hackernews, December 2011.

Functional encryption:

Securing the cloud. Larry Hardesty, MIT news (frontpage), June 2013.

CS 161: Computer Security, Spring 2018, undergraduate, ≈625 students!

CS 261: Security in Computer Systems, Fall 2017, graduate

CS 161: Computer Security, Fall 2016, undergraduate, ≈380 students!

CS 294: RISE Lab: Real-time, Intelligent, and Secure Systems, Fall 2016, graduate

CS 161: Computer Security, Spring 2016, undergraduate, ≈500 students!

CS 261: Security in Computer Systems, Fall 2015, graduate

2018 Sloan Research Fellowship
2015 Intel Early Career Faculty Award
2014 George Sprowls Ph.D. Thesis Award, MIT EECS
2011-2013 Google Ph.D. Fellowship for Secure Cloud Computing
2013 Departmental teaching award, honorable mention, MIT EECS
2012 CACM research highlight for CryptDB
2010 Johnson award for best CS Masters of Engineering thesis, MIT
2009 CRA Outstanding Undergraduate Award for research, winner
(one female and one male winner nationwide)
2010 Morris Joseph Levin Award for best MasterWorks presentation, MIT EECS
2009 Jacobs Presidential Fellowship for graduate studies, MIT
2009 Pogosyants Award for undergraduate research, MIT CSAIL
2008 Google Anita Borg Scholarship, winner
2006 Caltech Upper Class Merit Award, Carnation Scholarship
2006 CRA - Women Distributed Mentor Project Award for Summer Research

PC committees

NSDI 2019
OSDI 2018
NSDI 2018
NDSS 2017
Eurosys 2017
VLDB 2017
CCS 2016
Usenix Security 2016
- Also served as the poster chair
Eurosys 2016
Oakland (IEEE S&P) 2015

I am originally from Sibiu, a medieval town in the southern part of Transylvania in Romania somewhere close to Dracula's castle...

I enjoy long-distance running, nature, and people.

Some miscellaneous topics of potential interest:

My startup company providing end-to-end encryption for collaboration tools: PreVeil
The startup company Alessandro Chiesa co-founded providing a privacy-preserving cryptocurrency: ZCash