John Loucaides

@JohnLoucaides

VP of Engineering at Eclypsium, building firmware and hardware security. Security Researcher. Views expressed here are my own.

Vrijeme pridruživanja: listopad 2016.

Tweetovi

Blokirali ste korisnika/cu @JohnLoucaides

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @JohnLoucaides

  1. Prikvačeni tweet
    18. tra 2018.

    I am very excited to have started my new role as VP of Engineering at Eclypsium. We are building defenses for attacks targeting firmware and hardware.

    Poništi
  2. proslijedio/la je Tweet
    30. sij

    Our new research demonstrates that DMA attacks can compromise firmware (and OS) on enterprise laptops with hardware root of trust capabilities among the best in the industry. Very proud to work with the team here at

    Prikaži ovu nit
    Poništi
  3. proslijedio/la je Tweet
    30. sij

    Our research team is growing. If you're interested in developing detection methods for PC firmware threats and vulnerabilities, send your resume/CV to careers@eclypsium.com. Portland, USA or Córdoba, Argentina preferred. DMs open for questions.

    Poništi
  4. proslijedio/la je Tweet
    29. sij

    Cool new work from 's team which adds certificate measurement to IMA: This allows IMA signing keys to be remotely attested, rather than individual signatures, which operates a whole lot better at global scale.

    Poništi
  5. proslijedio/la je Tweet
    29. sij

    We will reserve a talk slot for most promising new speaker, age 25 and under, picked by our selection committee, fly them out to talk. For the top four submitters, including the winner, we'll give complentary seats at a Dojo of their choice (lim 1/course, rank choice) 2/4

    Poništi
  6. 25. sij

    Some good points here. I'm frequently troubled by the way people may misunderand common hardware and firmware issues based on their representation in CVE and CVSS. The answer won't be easy but awareness/accessibility will be critical.

    Poništi
  7. 25. sij

    Great summary of risks and mitigations related to cloud. Easy to see how firmware/hardware fit into this given cloudborne (targeting multi-tenancy), bmc vulns (in supply chain), and myriad of recent hw issues (often config or firmware patch related).

    Poništi
  8. proslijedio/la je Tweet
    24. sij

    Ahem. We are expecting some royalties from this...

    Prikaži ovu nit
    Poništi
  9. proslijedio/la je Tweet
    24. sij

    An excellent blog post by , a highly recommended read! "Executing custom Option ROM on D34010WYK and persisting code in UEFI Runtime Services"

    Poništi
  10. proslijedio/la je Tweet
    16. sij

    Free work hack for every reader: Get out of any meeting by claiming you thought the calendar invite was a phishing email. Also works great for messages about deadlines and feature requests.

    Poništi
  11. proslijedio/la je Tweet
    16. sij

    We have a working proof-of-concept exploit for ‘Whose Curve is it Anyway?’ — NSA’s bug in Microsoft’s Crypto API. Read on for our explainer:

    Poništi
  12. proslijedio/la je Tweet
    14. sij

    This you are strongly encouraged to implement the recently released CVE-2020-0601 patch immediately.

    Poništi
  13. proslijedio/la je Tweet
    14. sij

    Authored a piece on threat models! While often associated with early stages of software development, the process applies to firmware & hardware as well. Check out the benefits, five key steps, & 's real life EDK II threat model example:

    Poništi
  14. proslijedio/la je Tweet
    11. sij

    UEFI modules analysing with BinDiff IDA plugin

    Poništi
  15. proslijedio/la je Tweet
    27. pro 2019.

    Might need to get one of these for the office

    Poništi
  16. proslijedio/la je Tweet
    26. pro 2019.
    Poništi
  17. proslijedio/la je Tweet
    27. pro 2019.

    As part of EDK II Minimum Platform initiative Intel started publishing their UEFI Silicon Packages for a few platforms in edk2-paltforms repository (). They are heavily stripped down of course but some interesting information is remaining

    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet
    25. pro 2019.

    Merry Sithmas, everyone! Celebrating in the traditional way: by lighting the Alderaan Christmas tree.

    Poništi
  19. 24. pro 2019.
    Poništi
  20. proslijedio/la je Tweet

    Free and open-source textbooks on calculus, linear algebra, differential equations, real analysis, abstract algebra, combinatorics, and introduction to proof -- a partial list, helpfully compiled and curated by Dana Ernst .

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·