Yan MichalevskyinAnjunaAzure Key Vault backend integration for Hashicorp VaultHashicorp Vault is a wonderful solution for storing and controlling access to tokens and credentials, RBAC, and all-things authentication…3 min read·Feb 19, 2021----
Yan MichalevskyinAnjunaThe sudo privilege-escalation vulnerability and how to future-proof yourself against the likes of…On January 16th, 2021, Qualys Research Labs disclosed a privilege escalation vulnerability in no other than the Linux sudo utility. It was…3 min read·Feb 5, 2021----
Yan MichalevskyinAnjunaCompiler-based Techniques for Enhancing Performance and Privacy in EnclavesI’ve been collaborating for a while with the ACSL research lab at the Technion and this collaboration has resulted in the recent…2 min read·Nov 23, 2019----
Yan MichalevskyinHackerNoon.comThe thing about Hardware Security ModulesHardware Security Modules (HSMs) are not easy to maintain, and they don’t always end up providing the security you hope them to. If you…4 min read·May 29, 2019----
Yan MichalevskyinAnjunaWhy protection against root users is importantSecurity company Qualys has recently disclosed vulnerabilities in Linux’s Systemd, the default service manager daemon for many Linux…2 min read·May 21, 2019----
Yan MichalevskyinAnjunaSGX, or how I stopped worrying about the microchip hackBloomberg Businessweek had recently reported on a hardware supply chain allegedly infiltrated by government-sponsored hackers, who…3 min read·May 21, 2019----
Yan MichalevskyinHackerNoon.comProtecting Byzantine Fault Tolerance with Trusted ExecutionYou might be familiar with non-BFT consensus protocols like Paxos and Raft. These protocols can tolerate crash failures in up to 1/2 of…2 min read·Apr 20, 2019----
Yan MichalevskyinAnjunaForeshadowIn this post, we explain the implications of the Foreshadow attack and its mitigations via microcode updates and attestation.6 min read·Apr 19, 2019----
Yan MichalevskyinAnjunaMeltdown & Spectre and what it means for Intel SGXDiscussing the implications of Meltdown and Spectre CPU vulnerabilities on Intel SGX and trusted execution.4 min read·Apr 19, 2019----