Justin Cappos is a professor in the Computer Science and Engineering department at New York University, who strives to provide service to society through technology. Justin's research philosophy focuses on solving real world security problems in practice, often by fixing problems in large open source projects, such as Docker, git, and Python.

His dissertation work was on Stork, the first package manager designed for cloud computing environments. Improvements in Stork, particularly relating to security, have been widely adopted and are used in the majority of Linux systems. His TUF software is already used or is currently being adapted to secure software update systems for a variety of domains, including cloud container systems, automobiles, and programming language community repositories. TUF is already used in production to protect many critical systems.

He and his students and full time staff also work on a variety of other topics, including:

  • Seattle, a peer-to-peer cloud computing platform, which is primarily used to build censorship-resilient apps or for computer science education,
  • PolyPasswordHasher, a password storage scheme that prevents efficient password cracking,
  • Software testing tools we have found useful in our deployments, such as NetCheck, a tool that finds the root cause of failures in applications that use the network, and CheckAPI, a tool that finds write-once, run anywhere API violations),
  • Understanding the underlying causes of software bugs (see our site for the data set!),
  • in-toto, a system for ensuring software was not tampered with during development.

Due to the practical impact of his work, Justin was named to Popular Science's Brilliant 10 list in 2013.

I am currently recruiting talented PhD students, developers, research professors, and postdoctoral researchers who are interested in building and deploying real world software.

For press inquiries, please email jcappos@nyu.edu and I will respond promptly.