About

My mission is to use my skills to improve the freedom, security and privacy of individuals globally. The best way I have thought of to achieve this is to direct my energy towards improving the functionality and security of decentralized technologies and development of open source software which solves fundamental security problems we face today.

Some areas that I like to focus on are applied cryptography, supply chain security, secure system design, threat modelling, penetration testing, secure code review, and more broadly analyzing systems for weaknesses and designing “reasonably secure” systems by thinking from first principles.

Most of my energy is currently going into building out Distrust, a security consultancy and open source R&D firm focusing on securing mission critical infrastructure. Below are projects which are in development, and you can see more on the Distrust software page

Projects

  • StageX: Hermetic, deterministic, reproducible, multi-signed OCI-based build toolchain

  • ReprOS: Create ephermeral build environments to eliminate peristent risks

  • AirgapOS: Minimal, immutable, offline-first swiss-army knife for secret management

  • Keyfork: Derive keys from a single entropy source to simplify their management

  • Icepick: Framework for offline cryptographic signing operations

  • EnclaveOS: Immutable operating system for powering secure enclaves

  • Trove: Documentation for managing secrets you can’t afford to lose

  • SrcId: Verify source code integrity with hash-based fingerprints

  • Bootproof: Prove what software booted on a system via remote attestation technologies

  • libfakerand: A rust lib for overriding system calls which fetch entropy

  • Milk Sad Disclosure: Cryptographic vulnerability in libbitcoin

Publications

Networks