At Nokia Bell Labs' Cybersecurity Research department, we're revolutionizing how software updates are secured and distributed. Traditional centralized update systems are vulnerable to supply chain attacks - when attackers compromise update servers to distribute malware disguised as legitimate patches. Recent incidents have shown how attackers can exploit official update channels to push malicious code to hundreds of thousands of computers, even managing to have their malware digitally signed using stolen certificates.
Our team has developed a patented blockchain-based solution that decentralizes the patch distribution process, making it virtually impossible for attackers to compromise the update infrastructure. By leveraging blockchain's inherent properties of immutability and distributed consensus, our system ensures that only legitimate patches reach target devices, even if parts of the infrastructure are compromised.
As an intern, you'll work on extending this technology with advanced auditing capabilities and implement attack scenarios based on real-world incidents. This hands-on position offers the opportunity to work on cutting-edge security solutions that address critical vulnerabilities in current software update systems.
Preferred Qualifications:
Previous experience with smart contract development (Solidity/Ethereum) Knowledge of supply chain security concepts Familiarity with secure software development lifecycleExtend our existing blockchain-based patch distribution system with advanced auditing capabilities. Design and implement attack scenarios that simulate contemporary security threats. Develop and test new security features for the patch management system. Write clean, well-documented, and efficient code.