Sarah Jamie Lewis
I am an anonymity & privacy researcher who believes technology, protocols and systems should empower people. My work is focused on consent, metadata resistance and decentralization.
My work at Open Privacy is focused on metadata resistant communication.
In early 2019 I, along with researchers from other institutions, found a number of critical issues in the evoting system offered by SwissPost and Scytl. These issues also impacted the iVote system used in New South Wales.
- Critical Trapdoor in the SwissPost/Scytl Shuffle Proof
- Flaws in various Zero Knowledge Proofs in the SwissPost/Scytl system
- Addendum to the second paper, documenting a flaw that compromised Individual Verifiability - This disclosure led to SwissPost suspending evoting offerings for 2019.
Understanding how technology impacts the privacy of queer communities is one of my main research interests. I compiled a book, Queer Privacy, to capture some of the many different perspectives that provide insight into the issue.
Security Of Connected Children’s Toys
I have previously conducted independent research into the security and privacy of connected toys for children.
- Top10VPN Smart Toys Privacy & Security Report: Hackers Can Spy on Your Kids
- NYTimes: A Cute Toy Just Brought a Hacker Into Your Home
Sex Tech Privacy Research
One of my more well known hobbies is evaluating existing sex tech in terms of privacy and security, as well as designing new privacy preserving systems oriented around sex.
- Motherboard: We Anonymously Controlled a Dildo Through the Tor Network
- WIRED: The squishy ethics of sex with robots
- WIRED (UK): Smart dildos and vibrators keep getting hacked – but Tor could be the answer to safer connected sex
- Engadget: The law isn’t ready for the internet of sexual assault
Dark Web Deanonymization
I previously founded the OnionScan project, focused on understanding application-level deanonymization vectors, and mapping the dark web.