Conference Papers

  • “le-git-imate: Towards Verifiable Web-Based Git Repositories.” H. Afzali, S. Torres-Arias, R. Curtmola, J. Cappos. 13th ACM ASIA Conference on Computer and Communications Security (ACM ASIACCS ‘18). Songbdo, Incheon, Korea.
  • “On Omitting Commits and Committing Omissions: Preventing Git Metadata Tampering That (Re)introduces Software Vulnerabilities.” S. Torres-Arias, A. Ammula, R. Curtmola, J. Cappos. 25th USENIX Security Symposium (USENIX Security ’16). Austin, TX 2016
  • “Diplomat: Using Delegations to Protect Community Repositories.” T. Kuppusamy, S. Torres-Arias, V. Diaz, J. Cappos. 13th USENIX Symposium on Networked Systems Design and Implementation (NSDI ’16). Santa Clara, CA 2016

Magazine Articles

  • “PolyPasswordHasher: Improving Password Storage Security” S. Torres, J. Cappos. ;login: pages 18-21, December, 2014.


  • “PolyPasswordHasher: No password left behind” S.Torres-Arias. Army Cyber Institute Cyber Talks 2016.
  • “Securing the Software Supply chain with TUF and in-toto”. Dockercon ‘17