Dan J. Klinedinst

CERT

Dan Klinedinst is an SEI alumni employee.

Dan Klinedinst is a vulnerability researcher at Carnegie Mellon University's CERT Coordination Center. His work includes performing vulnerability analysis of government and critical infrastructure assets. He is currently focused on researching security vulnerabilities in autonomous vehicles, edge computing platforms and embedded devices. Prior to this role, he was the technical lead for developing a national scale penetration testing program for a major U.S. Government sponsor.

Klinedinst is also the author of the Gibson3D visualization tool and the technical architect of several international Capture the Flag events. He is a founder of the BSides Pittsburgh security conference, a frequent speaker at security events, and a former security engineer at Lawrence Berkeley National Laboratory.

Publications by Dan J. Klinedinst

Penetration Tests Are The Check Engine Light On Your Security Operations

January 07, 2020 • White Paper

Allen D. Householder Dan J. Klinedinst

A penetration test serves as a lagging indicator of a network security operations problem. Organizations should implement and document several security controls before a penetration test can be useful.
read
Authentication and Authorization for IoT Devices in Disadvantaged Environments

July 22, 2019 • Article

Sebastián Echeverría Grace Lewis Dan J. Klinedinst

This paper presents an implementation for authentication and authorization of IoT devices in disadvantaged environments, based on an IETF proposal (ACE).
read
Cyber Intelligence Tradecraft Report: The State of Cyber Intelligence Practices in the United States (Study Report and Implementation Guides)

May 21, 2019 • Collection

Jared Ettinger April Galyardt Ritwik Gupta

This report details the findings of a study the SEI conducted at the request of the United States Office of the Director of National Intelligence. In the report, we present current best practices and common challenges in cyber intelligence.
view
Secure VM Migration in Tactical Cloudlets

December 11, 2017 • Conference Paper

Grace Lewis Sebastián Echeverría Dan J. Klinedinst

The goal of this paper is to present a solution for secure VM migration between tactical cloudlets based on secure key generation and exchange in the field.
read
At Risk Emerging Technology Domains

October 24, 2017 • Podcast

Dan J. Klinedinst

In this podcast, CERT vulnerability analyst Dan Klinedinst discusses research aimed at helping the Department of Homeland Security United States Computer Emergency Readiness Team (US-CERT) understand future technologies and their risks.
learn more
2017 Emerging Technology Domains Risk Survey

October 05, 2017 • Technical Report

Dan J. Klinedinst Joel Land Kyle O'Meara

This report describes our understanding of future technologies and helps US-CERT identify vulnerabilities, promote security practices, and understand vulnerability risk.
read
Secure Tactical Cloudlets for Mission Support at the Edge

March 23, 2017 • Presentation

Grace Lewis Sebastián Echeverría Dan J. Klinedinst

This presentation introduces the architecture and features of tactical cloudlets and presents a solution for establishing trusted identities in disconnected environments based on the generation and exchange of secure keys in the field.
read
Establishing Trusted Identities in Disconnected Edge Environments

December 08, 2016 • Conference Paper

Sebastián Echeverría Dan J. Klinedinst Keegan M. Williams

The goal of this paper is to present a solution for establishing trusted identities in disconnected environments based on secure key generation and exchange in the field.
read
Establishing Trusted Identities in Disconnected Edge Environments

October 27, 2016 • White Paper

Sebastián Echeverría (Universidad de los Andes)Dan J. Klinedinst Keegan M. Williams

he goal of this paper is to present a solution for establishing trusted identities in disconnected environments based on secure key generation and exchange in the field.
read
Coordinated Vulnerability Disclosure

July 08, 2016 • Webinar

Dan J. Klinedinst

Learn how to develop a vulnerability coordination capability, which helps you respond to vulnerabilities and demonstrates that you are serious about fixing them.
watch
On Board Diagnostics: Risks and Vulnerabilities of the Connected Vehicle

April 13, 2016 • White Paper

Dan J. Klinedinst Christopher King

This report describes cybersecurity risks and vulnerabilities in modern connected vehicles.
read
2016 Emerging Technology Domains Risk Survey

April 08, 2016 • Technical Report

Christopher King Dan J. Klinedinst Todd Lewellen

This 2016 report provides a snapshot of our current understanding of future technologies.
read
Tactical Cloudlets: Moving Cloud Computing to the Tactical Edge

November 18, 2015 • Presentation

Grace Lewis James Root Dan J. Klinedinst

This presentation explains the tactical cloudlet concept and describes an implementation targeted at promoting the survivability of mobile systems.
read