Brian Mastenbrook

Security Center of Excellence
created Security CoE to drive security engineering and response across Western Digital
reorganized, staffed, directed Western Digital PSIRT
led security engineering for all consumer products and client/enterprise/embedded flash products
vision, architecture, design, engineering team lead, ArmorLock encrypted NVMe SSD
security design & architecture, My Cloud OS 5

portable wireless web server, $29 msrp
Marvell 88MW302, 200MHz ARM Cortex-M4, 512kB SRAM for code+data
802.11n wireless, USB 2.0 HS data, USB stick form factor, up to 200GB internal storage
custom memory protected operating system, only low level drivers privileged
unprivileged wifi driver from Marvell, unprivileged completely in-house filesystem, TCP/IP stack, WebDAV server, etc.
all unprivileged components tested with ubsan and asan
unit tests on kernel scheduler, memory allocator, etc.
concolically tested IP stack with KLEE
concurrent embedded filesystem, modeled and verified with Spin
secure boot, secure firmware update
manufacturing program and test automation in Typed Racket

current