Yan MichalevskyinAnjunaAzure Key Vault backend integration for Hashicorp VaultHashicorp Vault is a wonderful solution for storing and controlling access to tokens and credentials, RBAC, and all-things authentication…Feb 19, 2021Feb 19, 2021
Yan MichalevskyinAnjunaThe sudo privilege-escalation vulnerability and how to future-proof yourself against the likes of…On January 16th, 2021, Qualys Research Labs disclosed a privilege escalation vulnerability in no other than the Linux sudo utility. It was…Feb 5, 2021Feb 5, 2021
Yan MichalevskyinAnjunaCompiler-based Techniques for Enhancing Performance and Privacy in EnclavesI’ve been collaborating for a while with the ACSL research lab at the Technion and this collaboration has resulted in the recent…Nov 23, 2019Nov 23, 2019
Yan MichalevskyinHackerNoon.comThe thing about Hardware Security ModulesHardware Security Modules (HSMs) are not easy to maintain, and they don’t always end up providing the security you hope them to. If you…May 29, 2019May 29, 2019
Yan MichalevskyinAnjunaWhy protection against root users is importantSecurity company Qualys has recently disclosed vulnerabilities in Linux’s Systemd, the default service manager daemon for many Linux…May 21, 2019May 21, 2019
Yan MichalevskyinAnjunaSGX, or how I stopped worrying about the microchip hackBloomberg Businessweek had recently reported on a hardware supply chain allegedly infiltrated by government-sponsored hackers, who…May 21, 2019May 21, 2019
Yan MichalevskyinHackerNoon.comProtecting Byzantine Fault Tolerance with Trusted ExecutionYou might be familiar with non-BFT consensus protocols like Paxos and Raft. These protocols can tolerate crash failures in up to 1/2 of…Apr 20, 2019Apr 20, 2019
Yan MichalevskyinAnjunaForeshadowIn this post, we explain the implications of the Foreshadow attack and its mitigations via microcode updates and attestation.Apr 19, 2019Apr 19, 2019
Yan MichalevskyinAnjunaMeltdown & Spectre and what it means for Intel SGXDiscussing the implications of Meltdown and Spectre CPU vulnerabilities on Intel SGX and trusted execution.Apr 19, 2019Apr 19, 2019