Security, privacy and abuse

Software engineering and programming language researchers at Google study all aspects of the software development process, from the engineers who make software to the languages and tools that they use.

About the team

Our team brings together experts from systems, networking, cryptography, machine learning, human-computer interaction, and user experience to advance the state of security, privacy, and abuse research. Our mission is straightforward:

Make the world's information trustworthy and safe. We strive to keep all information on the Internet free of deceptive, fraudulent, unwanted, and malicious content. Users should never be at risk for sharing personal data, accessing content, or conducting business on the Internet.

Defend users, everywhere. Internet users can face incredibly diverse threats, from governments to cybercrime and sexual abuse. We approach research, design, and product development with the goal of protecting every user, no matter their needs, from the start.

Advance the state of the art. Making the Internet safer requires support from the public, academia, and industry. We foster initiatives that shape the direction of security, privacy, and abuse research for the next generation.

Build privacy for everyone. It's a responsibility that comes with creating products and services that are free and accessible for all. This is especially important as technology progresses and privacy needs evolve. We look to these principles to guide our products, our processes, and our people in keeping our users' data private, safe, and secure.

Team focus summaries

Featured publications

SoK: Hate, Harassment, and the Changing Landscape of Online Abuse
Kurt Thomas
Devdatta Akhawe
Michael Bailey
Dan Boneh
Elie Bursztein
Sunny Consolvo
Nicola Dell
Zakir Durumeric
Patrick Gage Kelley
Deepak Kumar
Damon McCoy
Sarah Meiklejohn
Thomas Ristenpart
Gianluca Stringhini
(2021)
"Shhh...be Quiet!" Reducing the Unwanted Interruptions of Notification Permission Prompts on Chrome
Igor Bilogrevic
Balazs Engedy
Jud Porter
Nina Taft
Kamila Hasanbega
Andrew Paseltiner
Hwi Lee
Edward Jung
Meggyn Watkins
PJ McLachlan
Jason James
30th USENIX Security Symposium (USENIX Security 21), USENIX Association, Vancouver, B.C. (2021)
Tracking Ransomware End-to-end
Danny Y. Huang
Maxwell Matthaios Aliapoulios
Vector Guo Li
Luca Invernizzi
Kylie McRoberts
Elie Bursztein
Jonathan Levin
Kirill Levchenko
Alex C. Snoeren
Damon McCoy
Security & Privacy 2018 (2018)
Measuring HTTPS adoption on the web
Adrienne Porter Felt
Richard Barnes
April King
Chris Palmer
Chris Bentzel
Parisa Tabriz
USENIX Security (2017)
Data breaches, phishing, or malware? Understanding the risks of stolen credentials
Kurt Thomas
Frank Li
Ali Zand
Jacob Barrett
Juri Ranieri
Luca Invernizzi
Yarik Markov
Oxana Comanescu
Vijay Eranti
Angelika Moscicki
Daniel Margolis
Vern Paxson
Elie Bursztein
(2017)
Scalable Private Learning with PATE
Nicolas Papernot
Shuang Song
Ilya Mironov
Ananth Raghunathan
Kunal Talwar
Úlfar Erlingsson
International Conference on Learning Representations (ICLR) (2018)
Exploring decision making with Android's runtime permission dialogs using in-context surveys
Bram Bonné
Sai Teja Peddinti
Igor Bilogrevic
Nina Taft
Thirteenth Symposium on Usable Privacy and Security (SOUPS), Usenix (2017)
Stories from survivors: Privacy & security practices when coping with intimate partner abuse
Tara Matthews
Kathleen O’Leary
Anna Turner
Manya Sleeper
Jill Palzkill Woelfer
Martin Shelton
Cori Manthorne
Elizabeth F. Churchill
Sunny Consolvo
CHI '17 Proceedings of the 2017 CHI Conference on Human Factors in Computing Systems, ACM, New York, NY, USA (2017), pp. 2189-2201
An Experience Sampling Study of User Reactions to Browser Warnings in the Field
Rob Reeder
Adrienne Porter Felt
Sunny Consolvo
Nathan Malkin
Chris Thompson
Serge Egelman
CHI (2018)

Highlighted work

Some of our locations

Some of our people