Author's Blogs

Intel® Software Guard Extensions Tutorial Series change and delay
By John M. (Intel) Posted on 01/19/17 0
A high priority project combined with the holidays took me away from the Intel­® Software Guard Extensions Tutorial Series briefly, but it is moving ahead again and I expect Part 8 to come out in the next two or three weeks. Alas, I'll be covering a smaller topic before proceeding to power events...
Intel Software Guard Extensions Tutorial Series update: a new SDK version and a brief intermission
By John M. (Intel) Posted on 11/09/16 0
An update to the Windows version of the Intel Software Guard Extensions SDK was just posted to the Developer Zone. This new release, version 1.7, adds Visual Studio Professional 2015 Update 3 to the list of supported Microsoft IDE's and the Intel SGX Tutorial Series will take a brief break to ret...
Intel Software Guard Extensions (Intel SGX) Tutorial Series: Looking ahead
By John M. (Intel) Posted on 09/09/16 0
Part 4 of the Intel Software Guard Extensions (Intel SGX) Tutorial Series will be coming out in the next few days. In it, we'll be starting our enclave implementation, focusing on the bridge/proxy functions for the enclave itself as well as the middleware layer needed for the C++ code to interact...
Part 3 of the Intel® Software Guard Extensions Tutorial Series is Coming Soon
By John M. (Intel) Posted on 08/17/16 0
Part 3 of my Intel® Software Guard Extensions Tutorial Series is ready to go, but is being held up in a legal approval loop. I expect this to be resolved in the next week or two. I apologize for the delays. The good news is, this delay should only happen once. I am still committed to this series...
Slides from ToorCon 17 talk on OpenSSL Performance
By John M. (Intel) Posted on 10/25/15 0
I've sent the slides from my talk on Improving OpenSSL Performance to the ToorCon staff for distribution, but I am also making them available for download here in PDF format. I chose PDF since many of the slides have extensive notes which go into much greater detail that the slides could, and in many cases even cover detail that I could not put into the 50-minute session on Saturday.
Presenting at ToorCon 17 in San Diego on October 24th
By John M. (Intel) Posted on 10/07/15 0
I'll be speaking at the ToorCon 17 security conference which is taking place at the end of this month, from October 24-25th. My specific talk will be on Saturday at 1pm, and will cover some of the algorithm enhancements that were made to OpenSSL in order to increase the performance of AES-CBC and...
Presenting at USENIX LISA15 in November
By John M. (Intel) Posted on 09/10/15 0
I'll be holding a mini-tutorial session at the USENIX LISA15 conference in Washington, D.C. this coming November. My class, entitled Fundamentals of Data Visualization: Building more Effective Charts and Business Intelligence Dashboards, is targetted at anyone who has to present numerical data in static form, whether it be part of a presentation to management and co-workers or in a business intelligence dashboard. The emphasis is on creating clear graphs and displays that can be parsed quickly and accurately, and which do not mislead the reader. It also covers some visual theory and the physiology of vision, which serve as the foundation for the recommendations and best practices when creating charts and dashboards. I've taught a version of this material internally here at Intel over the past three years.
Configuring the Apache Web server to use RDRAND in SSL sessions
By John M. (Intel) Posted on 03/12/15 2
Starting with the 1.0.2 release of OpenSSL*, RDRAND has been temporarily removed as a random number source. Future releases of OpenSSL will re-incorporate RDRAND, but will employ cryptographic mixing with OpenSSL's own software-based PRNG. While OpenSSL's random numbers will benefit form the qual...
Changes to RDRAND integration in OpenSSL
By John M. (Intel) Posted on 10/03/14 0
Beginning with the 1.0.1f release of OpenSSL the RDRAND engine is no longer loaded by default*. The impact of this from the users' and developers' perspectives is that, for the near future, random numbers obtained from the RAND_bytes() function will come from OpenSSL's software-based PRNG rather...
To Concatenate or Not Concatenate RDRAND?
By John M. (Intel) Posted on 03/07/14 0
At the heart of Intel® Data Protection with Secure Key is the digital random number generator (DRNG), a NIST* SP800-90A compliant pseudorandom number generator which is accessed using the RDRAND instruction. Beginning with Intel CPU's code-named Broadwell, Secure Key will also include an SP800-90...