Projects

Here is a list of the projects I spend most of my time working on.

in-toto

in-toto is a series of tools to describe how a software development process should be performed, and to verify that such processes are followed properly. By giving these tools to administrators and developers, end users can verify that the software they are about to install is correct. This means, that such a package wasn’t tampered in transit, or that no errors were made during the elaboration of it. in-toto is currently under development. If you want to read more, check out the project’s website.

Arch Linux

I’m involved with Arch Linux as a Trusted User and part of the security team. You can see the packages that I maintain for the community repository here. I’m also involved in tracking vulnerabilities for the distribution and sending out security advisories to help our users mitigate them. You can subscribe to our feed here.

PolyPasswordHasher

PolyPasswordHasher is a secure password storage system. If you are not familiar with this, here is a video that can help you introduce yourself to this concept. The idea behind PPH is to make stored passwords interdependent in a sense that a server (or a hacker) needs to know some password information before he can check if a password is correct or incorrect. Cracking regular passwords can be done in a couple of hours. However, with PPH, we project an increase in cracking time by years, or millions of years depending on the configuration. If you want to read more, check out the project’s website.

TUF

TUF (short for The Update Framework) is a secure software update system. It is intended to be easy to integrate into existing update systems and protects against usual software update vulnerabilities. If you want to read more, go to the project’s website.

Other interesting projects I’ve contributed to

Briar

Briar is a secure, decentralized messaging application for first responders and activists. There are better descriptions about the motivations of its design here and here. You can visit their webiste here.

Mutt/NeoMutt

Mutt is a featureful CLI mail user agent (MUA), and NeoMutt is a friendly fork of mutt that seeks to incorporate many outside patches to add features or increase its stability. Their websites are this and this.

Other projects

I’m usually involved in different small-scale or experimental projects. If you would like to take a look at other code made by myself take a look at my GitHub profile.