I am a Ph.D. candidate and NSF Graduate Research Fellow at the University of Wisconsin–Madison. I am advised by Professor Patrick McDaniel.
My current research focuses on how public cloud deployment models upend existing assumptions about networks and the way we measure them. I have explored how cloud providers can improve security for tenants and their customers, including work that has made practical impact on provider offerings. I am also developing new ways of using public clouds to gain a novel perspective on broader Internet phenomena. I’ve leveraged my experience in statistics and performance measurement in collaborative works on software security (e.g., fuzzing), machine learning security, and Internet of Things.
Outside of grad school, I like finding new ways to challenge myself. I co-founded and recently sold an email marketing technology business, Sendtric. I am an instrument-rated private pilot and spend much of my free time flying/maintaining my Piper Arrow.
I also enjoy 🥾 backpacking, 🧗 rock climbing, 🦆 bird watching, 📷 photography, and combinations thereof.
Email: epauley@cs.wisc.edu
It’s no secret that leaving credentials in source code is risky, especially when tools like GitHub make it easy to share code publicly with a single command. The major players have long had tooling to help prevent this like GitHub Secret Scanning, and GitHub also makes it possible (at least in theory) for third-party providers to join the program. Unfortunately, out of the countless platforms that use secrets for authentication, only 100 or so have partnered with GitHub’s program.