Welcome! Here I share with you some summaries of some things that I've worked on that you may find interesting. Feel free to browse around and check out my work. If you have questions or want a friendly conversation, you can reach out to me at adrianlshaw on Twitter or Mastodon or Bluesky.

• Principal Researcher at HP Labs, where I work hard to push the boundaries on secure hardware/software co-design in PCs and laptops.
• Security Architect at ARM, where I worked on the TrustZone architecture and designed software standards, including Platform Security Architecture (PSA).
• Research Scientist at Hewlett Packard Enterprise (Labs), where I worked on platform security technologies for servers and network equipment.

• Software: hypervisors (Xen, KVM, and more), operating system (Linux, L4, Zephyr, Barrelfish and more) technologies, device drivers, security subsystems and network virtualization (SDN and DC networking)
• Firmware: boot security, robustness, firmware (UEFI BIOS, Trusted Firmware), secure update, trusted execution environments, secure logging and attestation, secure storage, protocols etc.
• Hardware: SoC security, system architecture and IP, Trusted Platform Modules (TPM), some very limited Verilog/FPGA experience

I've had the privilege to work with some outstanding people in the industry, including students as well as veterans, and I've learned a tremendous amount from them.

Giving back to the research community is important to me. I serve on the technical committee of IEEE NetSoft conference, the SecSoft workshop and IEEE Future Networks World Forum. . I'm available to participate in others.

I've also represented my employers at various industry standards bodies, including the Trusted Computing Group (TCG), Internet Engineering Task Force (IETF), Distributed Management Task Force (DMTF) and ETSI.

• Zephyr-CHERI (more to come on that).
  • CHERI is an extension to instruction sets that provides very precise memory compartmentalization.
  • Zephyr is an emerging RTOS for microcontrollers and a promising ecosystem.
• Platform Security Architecture (PSA) for TrustZone based IoT devices. This later became a part of PSA Certified
• Firmware Update API standard
• Standard Root of Trust interfaces: Attestation API, Crypto API, Storage API. Now available on a few popular RTOS systems.
• Firmware Framework M (FF-M)
• Mbed SPM: An extension of the Mbed RTOS that provides a secure partition manager for Cortex-M microcontrollers without TrustZone.
  An evolution of the uVisor project to implement PSA principles.
• Trusted Firmware M: a secure partition manager designed for ARMv8-M or multiprocessor architecture. Occasional code reviews and design discussions
• IETF drafts
• A different approach to memory protection in large scale systems
• Designing security for a non-volatile memory (NVM) based supercomputer called The Machine
• Trustworthy Network Function Virtualization (NFV) infrastructure"
• TPM-based attestation for network equipment
• SECurity at the network EDge: an EU funded project to offload security applications from devices into the network
• Trust Domains: a UK funded research project that explored economical models and technical mechanisms to build and encourage trust within computer systems
• Forensic VMs

Patents are a "thing" in the industry. They're not a good measure of innovation, but they're something.