Yan Michalevsky – Medium

Yan Michalevsky

Yan Michalevsky
in
Anjuna

Azure Key Vault backend integration for Hashicorp Vault

Hashicorp Vault is a wonderful solution for storing and controlling access to tokens and credentials, RBAC, and all-things authentication…

3 min readFeb 19, 2021

--

--

Yan Michalevsky
in
Anjuna

The sudo privilege-escalation vulnerability and how to future-proof yourself against the likes of…

On January 16th, 2021, Qualys Research Labs disclosed a privilege escalation vulnerability in no other than the Linux sudo utility. It was…

3 min readFeb 5, 2021

--

--

Yan Michalevsky
in
Anjuna

Compiler-based Techniques for Enhancing Performance and Privacy in Enclaves

I’ve been collaborating for a while with the ACSL research lab at the Technion and this collaboration has resulted in the recent…

2 min readNov 23, 2019

--

--

Yan Michalevsky
in
HackerNoon.com

The thing about Hardware Security Modules

Hardware Security Modules (HSMs) are not easy to maintain, and they don’t always end up providing the security you hope them to. If you…

4 min readMay 29, 2019

--

The thing about Hardware Security Modules

--

Yan Michalevsky
in
Anjuna

Why protection against root users is important

Security company Qualys has recently disclosed vulnerabilities in Linux’s Systemd, the default service manager daemon for many Linux…

2 min readMay 21, 2019

--

--

Yan Michalevsky
in
Anjuna

SGX, or how I stopped worrying about the microchip hack

Bloomberg Businessweek had recently reported on a hardware supply chain allegedly infiltrated by government-sponsored hackers, who…

3 min readMay 21, 2019

--

SGX, or how I stopped worrying about the microchip hack

--

Yan Michalevsky
in
HackerNoon.com

Protecting Byzantine Fault Tolerance with Trusted Execution

You might be familiar with non-BFT consensus protocols like Paxos and Raft. These protocols can tolerate crash failures in up to 1/2 of…

2 min readApr 20, 2019

--

Protecting Byzantine Fault Tolerance with Trusted Execution

--

Yan Michalevsky
in
Anjuna

Foreshadow

In this post, we explain the implications of the Foreshadow attack and its mitigations via microcode updates and attestation.

6 min readApr 19, 2019

--

Foreshadow

--

Yan Michalevsky
in
Anjuna

Meltdown & Spectre and what it means for Intel SGX

Discussing the implications of Meltdown and Spectre CPU vulnerabilities on Intel SGX and trusted execution.

4 min readApr 19, 2019

--

Meltdown & Spectre and what it means for Intel SGX

--

Yan Michalevsky

Yan Michalevsky

Yan is the co-founder and CTO of Anjuna, a company that specializes in secure enclaves. He holds a PhD in applied security and privacy from Stanford University.

Following

Help
Status
About
Careers
Blog
Privacy
Terms
Text to speech
Teams