Milosch Meriac

Latest News

• Try my Arm Trusted Firmware Interactive Explorer
• Build Arm Trusted Firmware for M-profile Arm CPUs in Docker

Introduction

I am involved in hardware, embedded software, protocols and security projects around the Internet of Things and consider myself a white-hat hacker. I provide Embedded Design & Hardware Security Consultancy Services around the Internet of Things.

Before that I was working as Principal Security Research Lead at ARM on advanced IoT security solutions to allow prevention, detection and remote recovery from attacks or malware infection on embedded devices, fog computing nodes and cloud services. One of my main security projects at Arm was the uVisor, a secure hypervisor that enforces hardware security boundaries between embedded software components using the ARMv7M memory protection unit on contemporary ARM Cortex M3/M4 microcontrollers.

I have over 20 years of professional experience in embedded programming, hardware development and the information security business. I enjoy breaking things, working on microcontroller security and improving IoT security.

Interested in my Help?

If you have interesting projects available or need my help - feel free to contact me for:

• Active/Passive RFID
• Hardware development (Consumer electronics and Industrial test equipment)
• Reverse Engineering and Embedded Security
• Embedded Systems design
• Realtime drivers
• Low-level Programming
• Linux Driver and OS development

My GPG/PGP Key ID is C8C1 EB07 C743 58FB 1259 5ED9 708B 8D3E 15D5 2B9F

I regularly give talks on security …

• At eSAME Conference 2017: The challenge of scaling IoT - Modern security for microcontrollers
• At Embedded World 2017: High-end security for low-end microcontrollers - Hardware-security acceleration on ARMv8-M systems
• At ARM TechCon 2016: Practical real-time operating system security for the masses
• A keynote at hardwear.io in 2016 on “Tower defense for hackers: Layered (in-)security for microcontrollers” in 2016.
• At OSHUG 39 in 2015 on Bare Metal Bluetooth Programming. You can find the recording of the talk here.
• I had fun with breaking iCLASS RFID Standard security - see HID iCLASS™ security demystified and Heart of Darkness - exploring the uncharted backwaters of HID iCLASS™ security.
• Regular speaker at the Chaos Communication Congess hacker conference in 2002, 2006-2011
• As one of the three maintainers of the former Xbox-Linux Project I helped breaking the Xbox security in 2002 and ported the first Linux System to the Xbox.

… or make things

In my private time I love making/grokking things. I am playing with RGB strips to create light paintings and counter-advertising bags. I am the Co-Founder of active and passive RFID open source projects like SocioPatterns, Sputnik/OpenBeacon, OpenPCD and OpenPICC and I am committed to RFID related security research.

As a member of the Blinkenlights Stereoscope Core Team I designed the 2.4GHz OpenBeacon based wireless dimmmer and Ethernet WMCU Hardware that was used in the Toronto City Hall Installation.

My interests are grouped around hardware design, embedded systems, RF designs, active and passive RFID hardware development, custom-tailoring of embedded Linux hardware platforms, real time systems, IT-security, hardware & software reverse engineering and security evaluations of embedded systems.