Nikolaj Schlej

@NikolajSchlej

Firmware Security Engineer

Cupertino, CA
github.com/NikolajSchlej
Vrijeme pridruživanja: lipanj 2015.
Rođen/a 1987.
94 fotografije ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @NikolajSchlej

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @NikolajSchlej

  1. 26. pro 2019.

    I consider EDK2 support as the most important step in a long way of actual industry-wide Rust adoption, but I'd also like to thank other firmware folks for making steps in the same right direction, i.e. for , for

    1 reply 1 proslijeđeni tweet 6 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  2. 26. pro 2019.

    I'd like to thank everybody working on RustPkg () and hope that it will get out of staging and adopted by IBVs and OEMs alike, as after 20 years of writing security-critical system software in C, it's finally time to switch to a safer better tools.

    1 proslijeđeni tweet 8 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  3. 26. pro 2019.

    Happy holidays, everyone. I have a wish to make for 2020 and it's about further proliferation of Rust in firmware space. recently blogged about the effort to make Rust into a first-class language for EDK2 (), and that work makes me happy.

    5 proslijeđenih tweetova 21 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  4. 19. pro 2019.

    A new set of "Mac firmware security" pages are finally out, thanks to . Check it out, it's what me and my teammates at Apple had beet working on really damn hard for the last several years.

    1 reply 93 proslijeđena tweeta 221 korisnik označava da mu se sviđa
    Poništi
  5. proslijedio/la je Tweet
    22. stu 2019.

    Mac secure boot (with two world firsts: DMA defense from PCIe Bus 0, and the Option ROM sandbox), iOS kernel integrity, Pointer Auth Codes (PAC), APRR register, Page Protection Layer (PPL), and novel Find My crypto — all in my slides from Black Hat 2019!

    8 replies 217 proslijeđenih tweetova 632 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  6. 8. lis 2019.

    macOS Catalina brings a small, but important update to Mac Firmware Password mechanism: you can now opt-out (and back in) from password reset mechanism used by AppleCare (see for it's guts). It makes FW password harder to reset, use it on your own risk!

    155 proslijeđenih tweetova 320 korisnika označava da im se sviđa
    Poništi
  7. 4. ruj 2019.

    Fixed an annoying UEFITool NE bug in microcode header detection that got reported many times. Note to self: when designing a header for something, do include some magic bytes that are more unique than 01 00 00 00.

    1 proslijeđeni tweet 18 korisnika označava da im se sviđa
    Poništi
  8. 19. kol 2019.

    Further improved it today by adding IFWI v1.7 and v2.0 support and fixing reported issues. Want to thank all early adopters and testers for reporting those bugs (please use GitHub issue tracker, good folk, it has better history and visibility than DMs).

    This new UEFITool feature (ME region parser) is really cool. Supports even manifest and metadata extraction. Some manifest extensions aren't displayed thought, only can be extracted, but nevertheless that all is very useful
    6 proslijeđenih tweetova 19 korisnika označava da im se sviđa
    Poništi
  9. 8. kol 2019.

    Another Mt. Everest of 's work right here. Huge props to everybody involved.

    macOS option ROM sandbox driver. Looking forward to checking out the attack surface!
    12 proslijeđenih tweetova 28 korisnika označava da im se sviđa
    Poništi
  10. 5. kol 2019.

    Got a ticket to 2019, will use this opportunity to learn more about the other (non-UEFI/PI) side of the current x86 firmware world.

    5 proslijeđenih tweetova 28 korisnika označava da im se sviđa
    Poništi
  11. 24. srp 2019.

    It took us some serious time, but I've finally got all required official approvals to continue working on UEFITool, huge props to for making that happen. My first commit since 2016, adding ME region parser and extended ucode header parser:

    6 replies 54 proslijeđena tweeta 173 korisnika označavaju da im se sviđa
    Poništi
  12. 8. srp 2019.

    Even made a chiller later on, but that was already late enough for us to move on from overclocking to other interesting things in life. Was a nice trip down the memory lane... That overclocking experience was actually the first step towards firmware development for me.

    1 reply 8 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  13. 8. srp 2019.

    Because we didn't have access to any commercial solutions, almost everything was self-made and/or ad-hoc. Water blocks, thermal pots, isolation, etc.

    1 reply 3 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  14. 8. srp 2019.

    We also tried some exotic solutions like DI-chilled air, but they aren't really effective, and were quickly forgotten.

    1 reply 1 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  15. 8. srp 2019.

    Water can also be boosted with snow, which is also a consumable resource, but we had tons and tons of that in Siberia most of the time.

    1 reply 3 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  16. 8. srp 2019.

    The biggest downside of LN2 and DI is the fact that both of them are consumed in the process, and are therefore only for OC record attempts. We didn't have a chiller, so our only option for a non-consumable coolant was water.

    1 reply 4 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  17. 8. srp 2019.

    If LN2 wasn't an option, second best ghetto OC source of low temps was dry ice, aka frozen CO2. Cheap as dirt, reliable, has bonus point of using vodka as coolant (acetone is actually better at that, but it's vapor is bad for you, and you absolutely can't drink it afterwards).

    1 reply 4 proslijeđena tweeta 9 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  18. 8. srp 2019.

    LN2 wasn't available in my hometown (Rubtsovsk), so we had to get it from bigger city (Barnaul, ~250 km away) in special containers. They are hard to fit in a car, so we used trans instead. Those 2 containers is enough for about a full day of "benching" a normal 1CPU/1GPU PC.

    1 reply 1 proslijeđeni tweet 7 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  19. 8. srp 2019.

    .'s tweet reminded me about a long-forgotten overclocking hobby I had during my university days. Behold, peak ghetto extreme overclocking, ~10 years ago. Good times...

    5 proslijeđenih tweetova 37 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  20. proslijedio/la je Tweet
    26. lip 2019.

    Very excited to return to the Black Hat stage this year to talk about some world-class Apple security features! iOS code integrity and Pointer Authentication Codes, Mac secure boot with the T2 Security Chip, the crypto behind the Find My feature, and more:

    New Briefing “Behind the scenes of iOS and Mac Security” by Ivan Krstić (), Head of Apple Security Engineering and Architecture provides technical details of several key technologies new to iOS 13 and the Mac
    9 replies 111 proslijeđenih tweetova 383 korisnika označavaju da im se sviđa
    Poništi

@NikolajSchlej još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·