In few words I am -
Currently a first-year Ph.D. student in the University at Buffalo. My research interest is focused on System Security. Mainly I am working towards building secure systems with required efficiency for Cortex-M and Cortex-A systems. I also interested in working on FPGA based security solutions. Research assistant at the Computer Engineering Department of the University at Buffalo. My advisor is Professor Ziming Zhao.
I had worked as a software developer in BJIT from 2017 to 2019. During that time, I used Java as the backend language for developing an ERP system. Also used other languages like C, C++, Python and Javascript. I worked with Sturts.2, Spring MVC, Spring boot frameworks.
Regarding database languages I had used MySQL/MariaDB, Postgres,eMatrix.
Ph.D. in Computing Science and Engineering, August,2020 to Present
University at Buffalo, Buffalo, New York, USA.
Ph.D. in Computing and Information Sciences, 2019 to August,2020
Rochester Institute Of Technology, Rochester, New York, USA.
BSc in Computer Science and Engineering, 2017
Khulna University of Engineering and Technology, Khulna, Bangladesh.
Research Assistant
August 2020 to Present Full TimeCactiLab, RIT.
August 2019 – August 2020 Full TimeCortex-A Cortex-M TrustZone FPGA LLVMCactiLab is a security research lab at University at Buffalo directed by my advisor professor ziming zhao. The main research focus of the lab is centered around solving security vulnerabilities in Cortex-A and Corte-M systems. These systems lack security primitives comapred to traditional desktop systems due to lack of hardware features and performance consideration. We paln to derive suitable security solutions for these systems with available hardware features.Software Engineer, Full Stack
July 2017 – August 2019 Full TimeSpring MVC Spring Boot MySQL Struts 2.0 EmatrixBJIT is one of the leading companies in Bangladesh. Most of the work is related to JAVA development. Worked in PLM(Product LifeCycle ManageMent) system for a long time of Valmet(A finish production company).
Skills
C & C++ Java Python Grails
Spring Boot Spring 3
eMatrix MySQL/MariaDB PgSQL Presto
JavaScript Jenkins Angular Js
Projects
- Esho_Shikhi (এস শিখি)
A desktop application that makes children education more interesting.
- File-Share
A website to share files with group members and to avoid unwanted access.
- Wireless PC Controller
An android application to operate various functions of computer through Wi-Fi network.
Publications
BYOTee: Towards Building Your Own Trusted Execution Environments Using FPGA
In recent years, we have witnessed unprecedented growth in using hardware-assisted Trusted Execution Environments (TEE) or enclaves to protect sensitive code and data on commodity devices thanks to new hardware security features, such as Intel SGX and Arm TrustZone. Even though the proprietary TEEs bring many benefits, they have been criticized for lack of transparency, vulnerabilities, and various restrictions. For example, existing TEEs only provide a static and fixed hardware Trusted Computing Base (TCB), which cannot be customized for different applications. Existing TEEs time-share a processor core with the Rich Execution Environment (REE), making execution less efficient and vulnerable to cache side-channel attacks. Moreover, TrustZone lacks hardware support for multiple TEEs, remote attestation, and memory encryption. In this paper, we present BYOTee (Build Your Own Trusted Execution Environments), which is an easy-to-use infrastructure for building multiple equally secure enclaves by utilizing commodity Field Programmable Gate Arrays (FPGA) devices. BYOTee creates enclaves with customized hardware TCBs, which include softcore CPUs, block RAMs, and peripheral connections, in FPGA on demand. Additionally, BYOTee provides mechanisms to attest the integrity of the customized enclaves' hardware and software stacks, including bitstream, firmware, and the Security-Sensitive Applications (SSA) along with their inputs and outputs to remote verifiers. We implement a BYOTee system for the Xilinx System-on-Chip (SoC) FPGA. The evaluations on the low-end Zynq-7000 system for four SSAs and 12 benchmark applications demonstrate the usage, security, effectiveness, and performance of the BYOTee framework.In arxivA Reliable and Efficient Data Transmission protocol Using Quantum Key Distribution
Objective of this thesis is to provide reliable key exchange and to transmit data efficiently. This thesis is based on presenting a way to transmit data within two parties with the ability to detect any eavesdropper. While traditional cryptosystems such as RSA,DES,AES etc. have become vulnerable Quantum Key Distribution(QKD) provides a platform for secure data transmission. The experiment is primarily based on two theorems, “Heisenberg uncertainty theorem” and “no-cloning theorem” both is relate to QKD for secure data transmission.In IEEEAchievements
2022
5th place in MITRE Collegiate eCTF2022
Contributed as a team lead in MITRE eCTF2022. We finished in 5th place in the competition. Our project is open sources at:
Github2017
University Faculty Dean Award in the session 2015-16.
Got honors in both semesters in 4th year
2017
Joined BJIT as a Software Engineer
Moved to Dhaka
Started Working on PLM system of Infosis
Research Interest
Machine Learning Natural Language Processing Computer Vision
System Security Information Security Cybersecurity Web Security Software Security
Contact