Sangwan Kwon

• Staff Software Engineer, Associated Architecture
• Security & Privacy Team, Samsung Research, Samsung Electronics
• Contacts: sangwan.kwon@samsung.com, bitboom9@gmail.com

Technical Skills

• Professional Experience in System Security
  • From Security Middleware to Secure OS to Hypervisor
  • Currently interested in Confidential Computing
• Proficient in System Programming
  • From Modern C++ to Rust
  • Highly interested in Rust
• Strong understanding Software Architecture
  • From Design Pattern to Open-source Platform

Patents

• Key Management (Published 2020-KR, 2022-US)
• Data Protection (Published 2020-KR)
• Container (Published 2019-KR, 2020-US)

Education

• MSc, Computer Science: Yonsei University, South Korea (2014-2017)
• BSc, Computer Science: Kookmin University, South Korea (2007-2014)

Projects

• Confidential Computing (2022 - present)
  • Demonstrate On-device Confidential Computing Framework at Confidential Computing Summit 2023
    • Related article #1: VMware, AMD, Samsung and RISC-V push for confidential computing standards
    • Related article #2: VMware partners with Samsung, AMD and RISC-V to accelerate confidential computing
  • Role
    • On-device Confidential Computing Framework development
    • Arm CCA part on Universal Confidential Computing Framework
  • Feature
    • Arm Confidential Compute Architecture based
• Secure OS for Security chip (2020 - 2022)
  • Language: Rust, C++ 17
  • Role
    • Kernel development on Secure OS (Rust)
    • App Framework development on Secure OS (Rust)
    • Middleware to commuicate with Secure OS on Android OS (C++)
    • Type-safety RPC framework (Rust & C++)
• Lightweight Actor Framework (2020)
  • Language: Rust (no std)
  • Role
    • Actor Framework development on Embedded System
• Unified Security Monitor (2019 - 2020)
  • Project: ViST
  • Language: C++ 17
  • Release: Tizen 6.0
  • Role: maintainer
    • Design and develop project
    • Secure monitor development w/ SQLite Virtual Table
  • Summary:
    • Provide unified interface of security functions
  • Feature:
    • Security virtual table: The object which be bound security functions
    • Struct-based schema: The schema of security functions
    • Query-based unified interface: The interface between query and virtual table
    • Type-safe query builder: The query builder with type-error checking at compile time
• Type Safed Query Builder (2018)
  • Project: qxx
  • Language: C++ 14
  • Release: Tizen 5.5
  • Role: maintainer
  • Summary:
    • Provide query builder written in c++
  • Feature:
    • Type safed query builder (type checked at compile time)
• RPC Framework (2018)
  • Project: klay (rmi)
  • Language: C++ 14
  • Release: Tizen 4.0
  • Role: developer
  • Summary:
    • Provide RMI(remote method invocation) between server and client written in c++
• Authentication Framework (2017 - 2018)
  • Project: auth-fw
  • Language: C++ 11
  • Release: Tizen 4.0
  • Role: developer
  • Summary:
    • Provide authentificate service to manage password on Tizen
  • Feature:
    • Adjusted plugin architecture for supporting trust-zone
    • On-demand service with dbus socket activation
• Certification Framework #2 (2017)
  • Project: trust-anchor
  • Language: C++ 11
  • Release: Tizen 4.0
  • Role: maintainer
  • Summary:
    • Provide certificate service to assign own ssl certificates by application which invisible to other applications
  • Feature:
    • SSL certificate trust anchor
• Certification Framework #1 (2016 - 2017)
  • Project: cert-svc, cert-svc-ui, cert-checker
  • Language: C++ 11
  • Release: Tizen 3.0
  • Role: developer
  • Summary:
    • Provide certificate service to manage user and system certificates and to support APIs related application’s certificate
  • Feature:
    • Comply with W3C xml digital signatures
    • X.509 ceritifcates
    • Application signature validation