I am Dave Jing Tian, an Assistant Professor in the Department of Computer Science at Purdue University working on system security. My research involves embedded systems, operating systems, and trusted computing. All opinions are my own.
- 203,900 hits
All blogs on this website are licensed under a Creative Commons Attribution 4.0 International License.
Author Archives: daveti
The USB Type-C Authentication specification provides a method to authenticate USB products, although with some flaws. As you might wonder — what about other non-USB peripherals? How can we establish trust with them instead of “Trust-by-Default”? That’s how I ended … Continue reading
There were some crazy shooting and beating incidents happened in the past few weeks, and we have seen how our communities are trying to fight together to stop the hatred and racism. Unsurprisingly, my students asked me for my comments … Continue reading
I wrote two blog posts about Linux kernel build on Ubuntu [1,2]. There is also an official wiki page talking about the same thing . Still, things are broken when I try to create a homework assignment for my class. … Continue reading
Syzkaller  starts to support USB fuzzing recently and has already found over 80 bugs within the Linux kernel . Almost every fuzzing expert whom I talked to has started to apply their fuzzing techniques to USB because of the … Continue reading
One of the exciting things Intel has brought to RSA 2019 is Intel SGX Card . Yet there is not much information about this coming hardware. This post collects some related documentation from Intel and speculates what could happen within … Continue reading
Whether you need to implement a kernel rootkit or inspect syscalls for intrusion detection, in a lot of cases, you might need to hijack syscall in a kernel module. This post summorizes detailed procedures and provides a working example for … Continue reading
This post talks about 3 commits I have recently added into my own valgrind tree , including the support for fsgsbase instructions, rdrand/rdseed instructions, and adding a new trapdoor (client request) to support gdb-like add-symbol-file command. Note that all these … Continue reading