I build secure-messaging systems and work at the interoperability frontier — implementing end-to-end-encrypted messaging and email against IETF standards (MLS, MIMI, OpenPGP), and documenting exactly what the technology does and doesn't protect.
My current work is Haven — an end-to-end-encrypted email and chat app that publishes its own threat model and limitations. Alongside it I work on protocol conformance and interoperability: building real, running implementations of in-progress standards and engaging the working groups directly.
I'd rather ship a working implementation and mark exactly where it's still guessing than assert a guarantee I can't demonstrate.