Category Archives: Security

Kernel Hacking – use crypto API in the IRQ context

Posted on January 17, 2015 by daveti

After my first post about Linux kernel crypto API, I keep playing with kernel crypto API for DSA and RSA implementations (will talk about these in my future posts). The truth is crypto API is NOT designed for IRQ context. … Continue reading →

Posted in OS, Security | Tagged crypto, IRQ, kernel, Linux, MPI | 1 Comment

CCS’14 – Securing SSL Certificate Verification through Dynamic Linking

Posted on November 6, 2014 by daveti

Our paper ‘Securing SSL Certificate Verification through Dynamic Linking‘ is ready for download from CCS’14. This post gives a brief introduction of main idea of this paper – certShim, and then concentrates on bytecode instrumenting in JVM to fix some … Continue reading →

Posted in Security | Tagged certShim, csa, Java, Javassist, JDK, JVM, OpenJDK, SENSEI, SSL | 1 Comment

Hack Go – generate non-FIPS DSA key parameters using hacked Go compiler

Posted on October 15, 2014 by daveti

Common DSA key parameter generation follow FIPS 186-3, which requires (L, N) bits length for P and Q, where L is at least 1024 and N is at least 160. However, sometimes we may want non-FIPS (L, N), for example, … Continue reading →

Posted in Programming, Security | Tagged crypto, DSA, FIPS, Go | 1 Comment

crypto – use Linux kernel crypto API

Posted on June 18, 2014 by daveti

Crypto is an important part of the Linux kernel source code. One can tell from the standalone crypto directory under the kernel source tree. Device drivers, file system and security all need crypto. This post does not help understand the … Continue reading →

Posted in OS, Programming, Security | Tagged CentOS, crypto, cryptomgr, kernel, Linux, SHA1 | 3 Comments

A paper review – seL4: Formal Verification of an OS kernel

Posted on December 12, 2013 by daveti

Paper review for – seL4: Formal Verification of an OS Kernel daveti@cs.uoregon.edu Dec 10, 2013 How could we guarantee the code we are running is right? Even after different and long-time testing, we have yet not been so sure that … Continue reading →

Posted in Embedded System, OS, Programming, Security | Tagged C, Haskell, HOL, Isabelle, seL4 | Leave a comment

fsl – Fedora Security Lab

Posted on July 20, 2013 by daveti

fsl (Fedora Security Lab) is a customized Fedora OS for security hack/test based Fedora 19. Like the famous BackTrace Linux, fsl has integrated a butch of security tools. To take the advantage of fsl, either security liveCD or all the … Continue reading →

Posted in Dave's Tools, OS, Security | Tagged fedora, fsl, fsli, Linux, security, yum | Leave a comment

shellcode 1 – comments for the doc “The Basics of Shellcoding”

Posted on February 10, 2012 by daveti

Recently been doing some stuffs on Shellcode. After a while wandering in the net, I found the doc “The Basics of Shellcoding” by Angelo Rosiello may be the very concise introduction to start with shellcoding, especially for the newbie like … Continue reading →

Posted in Security | Tagged assembly, opcode, security, shellcode, stack, x86 | Leave a comment