Yossi Gilad

About
Publications

I am an Associate Professor at the School of Computer Science and Engineering, the Hebrew University of Jerusalem.

Research Interests. I design, build, and analyze secure and scalable protocols and networked systems. My work focuses on the mechanisms that comprise Internet services. It ranges from the core Internet protocols, through content delivery networks, to large-scale Internet applications. My research methodology combines rigorous analysis with experimental evaluation, as well as informing deployment via standardization and interactions with practitioners.

Honors, Awards, Grants

Israel Science Foundation individual research grant (2023-2027).
NSF-BSF research grant (2023-2026).
Alon fellowship for outstanding young researchers.
Internet Research Task Force Applied Networking Research Prize (2017).
RIPE Academic Cooperation Initiative (2017).
IBM Research Inventor Recognition Award (2015).
The Check Point Institute Information Security Prize (2013-2014).
Israel Ministry of Science cybersecurity research scholarship (2012-2014).
Best student paper award at USENIX Workshop on Offensive Technologies (2012).
Bar-Ilan University presidential scholarship (2012 - 2014).
Check Point Institute for Information Security fellowship (2012 - 2013).
Israel ministry of education academic scholarship for excelling youth (2003).

Academic Service
I'm an Associate Editor at ACM Transactions of Privacy and Security, and on the program committee for the following conferences:

Usenix ATC 2025 (heavy PC)
IEEE Security and Privacy 2023, 2025
EuroSys 2024
ACM Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS) 2024
USENIX Security 2021, 2022, 2023, 2024
USENIX Symposium on Operating Systems Design and Implementation (OSDI) 2020, 2023
SYSTOR 2021, 2023 (program co-chair)
Proceedings on Privacy Enhancing Technologies (PoPETS) 2018, 2019, 2020, 2022
CoNEXT 2021
Algorithmic Principles of Computer Systems (APoCS) 2021
IEEE Conference on Communications and Network Security 2019
Workshop of Security & Privacy on the Blockchain (IEEE S&B) 2018

Distributed PIR: Scaling Private Messaging via the Users’ Machines. Elkana Tovey, Jonathan Weiss, and Yossi Gilad. ACM Conference on Computer and Communications Security (CCS) 2024. To appear.
Practical Rateless Set Reconciliation. Lei Yang, Yossi Gilad, and Mohammad Alizadeh. ACM SIGCOMM 2024. To appear.
Device Tracking via Linux’s New TCP Source Port Selection Algorithm. Moshe Kol, Amit Klein, and Yossi Gilad. USENIX Security Symposium 2023.
The Use of maxLength in the Resource Public Key Infrastructure (RPKI). Yossi Gilad, Sharon Goldberg, Kotikalapudi Sriram, Job Snijders, Ben Maddison. RFC 9319 Best Current Practice, 2022.
Twilight: A Differentially Private Payment Channel Network. Maya Dotan, Saar Tochner, Aviv Zohar, and Yossi Gilad. USENIX Security Symposium 2022.
Aardvark: An Asynchronous Authenticated Dictionary with Short Proofs. Derek Leung, Yossi Gilad, Sergey Gorbunov, Leonid Reyzin, and Nickolai Zeldovich. USENIX Security Symposium 2022.
Groove: Flexible Metadata-Private Messaging. Ludovic Barman, Moshe Kol, David Lazar, Yossi Gilad, and Nickolai Zeldovich. Symposium on Operating Systems Design and Implementation (OSDI) 2022.
Proving Server Faults: RPCs for Distributed Systems in Byzantine Networks. Jonathan Weiss, Albert Kwon, and Yossi Gilad. Hot Topics in Networks (HotNets) 2020.
DISCO: Sidestepping RPKI’s Deployment Barriers. Tomas Hlavacek, Italo Cunha, Yossi Gilad, Amir Herzberg, Ethan Katz-Bassett, Michael Schapira, and Haya Shulman. Network and Distributed System Security Symposium (NDSS) 2020.
Yodel: Strong Metadata Security for Voice Calls. David Lazar, Yossi Gilad, and Nickolai Zeldovich. Symposium on Operating Systems Principles (SOSP) 2019.
An extended abstract of this work appeared at HotPETs 2019.
Metadata-Private Communication for the 99%. Yossi Gilad. Communications of the ACM (CACM) 2019.
Vault: Fast Bootstrapping for Cryptocurrencies. Derek Leung, Adam Shul, Yossi Gilad, and Nickolai Zeldovich. Network and Distributed System Security Symposium (NDSS) 2019.
Perfect is the Enemy of Good: Setting Realistic Goals for Interdomain Routing Security. Yossi Gilad, Tomas Halvacek, Amir Herzberg, Michael Schapira, and Haya Shulman. Hot Topics in Networks (HotNets) 2018.
Karaoke: Distributed Private Messaging Immune to Passive Traffic Analysis. David Lazar, Yossi Gilad, and Nickolai Zeldovich. Symposium on Operating Systems Design and Implementation (OSDI) 2018.
PCC-Vivace: Online-Learning Congestion Control. Mo Dong, Tong Meng, Doron Zarchy, Engin Arslan, Yossi Gilad, Brighten Godfrey and Michael Schapira. Symposium on Networked Systems Design and Implementation (NSDI) 2018.
The Unintended Consequences of Email Spam Prevention. Sarah Scheffler, Sean Smith, Yossi Gilad, Sharon Goldberg. Passive and Active Measurement Conference (PAM) 2018.
Algorand: Scaling Byzantine Agreements for Cryptocurrencies. Yossi Gilad, Rotem Hemo, Silvio Micali, Georgios Vlachos and Nickolai Zeldovich. Symposium on Operating Systems Principles (SOSP) 2017.
Stadium: A Distributed Metadata-Private Messaging System. Nirvan Tyagi, Yossi Gilad, Derek Leung, Matei Zaharia and Nickolai Zeldovich. Symposium on Operating Systems Principles (SOSP) 2017.
MaxLength Considered Harmful to the RPKI. Yossi Gilad, Omar Saga and Sharon Goldberg. International Conference on emerging Networking EXperiments and Technologies (CoNEXT) 2017.
Are We There Yet? On RPKI's Deployment and Security. Yossi Gilad, Avichai Cohen, Amir Herzberg, Michael Schapira and Haya Shulman. Network and Distributed System Security Symposium (NDSS) 2017.
Jumpstarting BGP Security with Path-End Validation. Avichai Cohen, Yossi Gilad, Amir Herzberg and Michael Schapira. SIGCOMM 2016.
Awarded IETF/IRTF Applied Networking Research Prize!
CDN-on-Demand: An Affordable DDoS Defense via Untrusted Clouds. Yossi Gilad, Amir Herzberg, Michael Sudkovitch and Michael Goberman. Network and Distributed System Security Symposium (NDSS) 2016.
One Hop for RPKI, One Giant Leap for BGP Security. Avichai Cohen, Yossi Gilad, Amir Herzberg and Michael Schapira. Hot Topics in Networks (HotNets) 2015.
Securing Smartphones: A Micro-TCB Approach. Yossi Gilad, Amir Herzberg and Ari Trachtenberg. IEEE Pervasive Computing 2014.
Off-Path TCP Injection Attacks. Yossi Gilad and Amir Herzberg. ACM Transactions on Information and System Security 2014.
Off-Path Hacking: The Illusion of Challenge-Response Authentication. Yossi Gilad, Amir Herzberg and Haya Shulman. IEEE Security and Privacy Magazine 2014.
When Tolerance Causes Weakness: The Case of Injection-Friendly Browsers. Yossi Gilad and Amir Herzberg. International World Wide Web Conference (WWW) 2013.
Plug-and-Play IP Security: Anonymity Infrastructure Instead of PKI. Yossi Gilad and Amir Herzberg. European Symposium on Research in Computer Security (ESORICS) 2013.
Fragmentation Considered Vulnerable. Yossi Gilad and Amir Herzberg. ACM Transactions on Information and System Security 2013.
LOT: A Defense Against IP Spoofing and Flooding Attacks. Yossi Gilad and Amir Herzberg. ACM Transactions on Information and System Security 2012.
Off-Path Attacking the Web. Yossi Gilad and Amir Herzberg. USENIX Workshop on Offensive Technologies (WOOT) 2012. Awarded Best Student Paper.
Spying in the Dark: TCP and Tor Traffic Analysis. Yossi Gilad and Amir Herzberg. Privacy Enhancing Technologies Symposium (PETS) 2012.
Fragmentation Considered Vulnerable: Blindly Intercepting and Discarding Fragments. Yossi Gilad and Amir Herzberg. USENIX Workshop on Offensive Technologies (WOOT) 2011.
Lightweight Opportunistic Tunneling. Yossi Gilad and Amir Herzberg. European Symposium on Research in Computer Security (ESORICS) 2009.

Meta-data private communication at scale

Private communication over the Internet remains a challenging problem. Even if messages are encrypted, it is hard to deliver them without revealing metadata about which users are communicating. Scalable metadata-hiding systems, such as Tor, are popular but susceptible to traffic analysis attacks. In contrast, the largest-scale systems with metadata privacy require passing all messages through a small number of providers, incurring a very high operational cost for each provider and limiting their deployability in practice. Stadium (SOSP'17) is a point-to-point messaging system that provides metadata and data privacy while scaling its work efficiently across hundreds of low-cost providers operated by different organizations. We show that Stadium can scale to support 4x more users than the current state of the art, using servers that cost an order of magnitude less to operate. However, Stadium induces high latency, and to facilitate broad adoption, the metadata-private system should present comparable performance to ``vanilla'' (non-metadata-private) applications. Karaoke (OSDI'18) tackles this challenge. We show that a significant performance gain is achieved by distinguishing between passive and active attacks. Specifically, it is possible to completely avoid leakage of information about metadata when the attacker is passive (observes the traffic on every link and computations of malicious servers) and defend against active attacks (where the attacker modifies traffic) by bounding the leakage of statistical information through differential privacy. This insight, along with careful system design and a rigorous tight analysis allows reducing latency by almost two orders of magnitude over Stadium. In a forthcoming article (CACM'19), I describe the next challenges in scaling metadata private communication and why I believe they can be alleviated to a large extent.

Efficient cryptocurrencies

We work on increasing the scale that cryptocurrencies can operate. Algorand (SOSP'17) is a new cryptocurrency system that can confirm transactions with latency on the order of a minute while scaling to many users. Algorand ensures that users never have divergent views of confirmed transactions, even if some of the users are malicious and the network is partitioned. Vault (NDSS'19) builds on top to Algorand to reduce the cryptocurrency's bootstrapping costs. Existing cryptocurrencies require users to process the log of all transactions ever made, and keep track of everyone's balances, to validate new blocks of transactions. This approach causes a significant scalability hurdle; running a Bitcoin client today already requires fetching and processing almost 200GB of transactions' history, and this requirement will only increase with time. The adoption of more efficient designs (such as Algorand) will lead to a massive increase in the rate of transactions and is so only expected to aggravate this problem further. Vault addresses this issue by utilizing authenticated data structures to allow users to attach to transactions a succinct proof that their transactions are valid without requiring other users to process previous transactions or keep track of everyone else's balances.
Algorand is being commercialized by a startup company.

Securing interdomain routing under today's Internet constraints

Extensive standardization and R&D efforts are dedicated to establishing secure Internet routing through RPKI and BGPsec. Our studies show that there are significant challenges in enforcing RPKI-based policies (NDSS'17). We argue that many problems with using the RPKI are rooted in incorrectly using the maxLength parameter (CoNEXT'17), and suggest best practices (IETF draft). As an alternative to RPKI that is easier to adopt and robust to errors, we propose DISCO (HotNets'18).
The adoption of BGPsec, the next step in securing Internet routing that is built on top of RPKI, is expected to be far harder since it requires replacing the Internet infrastructure and provides limited benefits under partial adoption. We propose path-end validation (HotNets'15, SIGCOMM'16), a modest extension to RPKI or DISCO that provides security benefits comparable to BGPsec while circumventing its deployment challenges. Path-end validation was awarded the IRTF applied network research prize (2017).
The combination of DISCO and path-end validation provides a tangible path to secure Internet routing.