Eric Chiang

About:

Eric Chiang is a Software Engineering lead at Google with interests in security and open source projects.

Website:

ericchiang.github.io

Specializations:

Researcher Software Engineering Lead Cybersecurity Expert Software engineer

Interests:

Software Engineering Security Open Source Kubernetes Machine Learning

Incoming Links:

Jon Seager Morten Linderud Patrick Louis aka Venam

Outgoing Links:

Brian Krebs
Subscribe to RSS:
Link

0Protobuf generators for fun and profit

2025-02-25 json api rest go language yaml openapi remote procedure call protocol buffers

The text discusses the limitations of OpenAPI and gRPC as API definition languages and the author's preference for Protocol Buffer language over YAML. It also explains how to write your own protobuf generators and provides a simpl...

0Confidential Compute and GPUs

2025-01-27

The text discusses NVIDIA Confidential Compute, which includes Trusted Execution Environments (TEEs), encrypted memory, and hardware attestation. It explains the integration of the GPU and encrypted memory, and the challenges of s...

0The road to zero trust is paved with good intentions

2024-12-12

The blog post discusses the concept of zero trust architecture, its evolution, and the challenges associated with its implementation. It provides a maturity model to evaluate an organization's progress towards zero trust and empha...

0Writing shared libraries in Rust

2024-02-26

The post discusses the process of building a shared library with Rust for a proof-of-concept Linux-PAM module for Google Authenticator. It covers the steps to create a Rust library, generate Rust equivalent structs and functions f...

0Calling C from Go

2024-02-17

The post covers cgo, Go’s C interoperability layer, and how to reference C symbols through the magic “C” package. It also discusses how to pass Go slices as arrays to C, convert C arrays to Go slices, and handle strings. Additiona...

0Analyzing Spotify stream history

2024-02-12

The post covers the author's analysis of their personal Spotify streaming history data, which they obtained by requesting their extended streaming history from Spotify. The author used Jupyter, Pandas, and Matplotlib for the analy...

0The Rust borrow checker

2021-09-07

The text is about the Rust programming language and its memory model. It explains the concepts of references, owned variables, and concurrency in Rust. It also discusses the use of mutex for multiple threads in Rust.

0The Trusted Platform Module key hierarchy

2021-01-04

The text discusses the Trusted Platform Module (TPM) key hierarchy, which is a security device that provides a trust anchor to verify systems even if they’ve been compromised. It explains the complexity of TPMs and provides a guid...

0Keep it simple, stupid

2020-01-05

The author reflects on his childhood memories at the Zeum in San Francisco and the lessons he learned from his father, particularly the importance of simplicity. He also discusses the complexity of human relationships and the diff...

0Privileged containers aren't containers

2019-09-23

The text discusses the security risks associated with privileged containers, which are containers that have extensive access to the host and relaxed security restrictions. It explains how privileged containers can have dangerous L...

0User namespaces

2019-02-20

The text discusses user namespaces, which are a way to create unique views of user and group IDs, primarily used by unprivileged processes to access capabilities normally reserved for root. It explains how user namespaces work, th...

0Containers from scratch

2017-01-07

The text is a write-up of a talk given at CAT BarCamp, explaining how to build containers from scratch using underlying technologies built into the Linux kernel. It covers topics such as setting up a file system, chroot, unshare, ...

0A Let's Encrypt client for Go

2015-11-13

The text is a tutorial on how to use a Let's Encrypt client in Go to secure the internet with automated and free TLS certificates. It takes the reader through the workflow of signing up, completing challenges, and requesting certi...

0Testing databases with Docker

2015-09-14

The post discusses using Docker in test infrastructure, specifically for testing databases. It explains how to run a test on a laptop, the workflow for testing database code, creating an instance of Postgres, closing the database,...

0TLS with Go

2015-06-21

The text explains how TLS (and HTTPS) works by creating and using certificates in running servers with Go. It covers public and private key encryption, digital signatures, creating self-signed certificates, and getting the server ...

0about

0001-01-01

Eric Chiang is a Software Engineering lead at Google. He has given talks on various topics related to security and has also conducted research on topics like verifying TPM Boot Events and Untrusted Metadata. He has also written po...

0license

0001-01-01

The text provides a legal code for the use of code snippets on Eric Chiang's website, under the Creative Commons Legal Code CC0 1.0 Universal. It explains the purpose of the license, the waiver of copyright and related rights, and...