Make stuff boot!

▪ Designed and developed commands to launch apps on specific CPUs and set app arguments on a custom shell implementation, which was part of a multithreaded, UEFI/edk2/tianocore-based testing framework. Multithreading capability provided by a ported implementation of https://github.com/littlekernel/lk

▪ Debugging using Lauterbach trace32/t32.

▪ Memory/DDR-DSF (DDR => Double Data Rate, DSF => DDR System Firmware) firmware integration.

▪ Etc.

▪ Application development using Trusted Execution Environments (TEEs) such as Intel® Software Guard eXtensions (Intel® SGX):

https://software.intel.com/en-us/articles/code-sample-gateway-key-provisioning-and-secure-signing-using-intel-software-guard

▪ Yocto Linux recipes development for embedded systems enabling, to integrate SGX software stack, dm-verity, Linux SMACK, etc. Open-sourced & maintained Yocto Linux recipes for Intel® SGX:

https://github.com/intel/meta-intel-sgx/

https://layers.openembedded.org/layerindex/branch/master/layer/meta-intel-sgx/

▪ Contributed to Intel(R) SGX Linux Driver: https://github.com/intel/linux-sgx-driver

▪ Enabling Intel® SGX on Slimboot bootloader (Slimboot => Light-weight/fast BIOS). Open-sourced & actively maintained Intel® SGX enablement and library (SgxLib):

https://github.com/slimbootloader/slimbootloader

▪ Software design and development for various security capabilities across IoT platforms and developing software abstraction layers.

▪ Security Development Lifecycle (SDL), including threat modelling, code reviews/audit, etc.

▪ Provided training for Intel® SGX, including hands-on secure software development, performance benchmarking, etc.

▪ Software Build Environments: Linux Makefile, Android.bp/Android Soong, Windows 10 Visual Studio.

▪ Hobby hacking: penetration-testing, cold-boot attacks, buffer overflow, integer overflow, etc.

▪ Review customer's motherboard design schematic and layout to check for compliance of design specifications and analyze potential issues in case of non-compliance.

▪ Analyze and debug both functional and performance problems on platforms, participate in all phases of product issue debug, review designs of pre-launch products and debug issues on post-launch products.

▪ Enabling & sustaining security technologies - Intel TXT (Intel Trusted Execution Technology), Intel VT (Intel Virtualization Technology) and Intel BtG (Boot Guard).

▪ Collection and categorization of race condition based bug reports of linux device drivers so as to aid in automatic identification of program statements that are likely to cause race conditions.

▪ Performing static analyses using tools such as LLVM-Clang (callgraph generation) and CIL-OCaml (tracking function calls and memory writes).