Skip to content
View mtorun0x7cd's full-sized avatar
💭
Designing Zero Trust architectures
💭
Designing Zero Trust architectures

Block or report mtorun0x7cd

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
mtorun0x7cd/README.md

Mert Torun, M.Sc. — IT Security Architect · Systems Engineer

Mert Torun, M.Sc.

IT Security Architect · Systems Engineer

Safety-Critical Systems Verification and Validation Infrastructure Hardening Cryptography

I am an IT Security Architect & Systems Engineer holding an M.Sc. in Computer Science & Engineering from TH Köln. My work concerns the conditions under which a system can be trusted: the verification and validation of safety-critical systems, the hardening of enterprise infrastructure, and the construction of cryptographic architectures that establish the integrity and authenticity of digital artifacts. I read these problems through the established assurance literature — functional-safety, software-verification, and security-evaluation standards — and treat their methods as a shared vocabulary rather than a checklist. The orienting question across these domains is the same: under what conditions can a system's claimed properties be demonstrated rather than asserted.

A second commitment runs through this work: that engineering claims should be reproducible and independently checkable. I operate self-hosted, privacy-respecting infrastructure end to end, cryptographically sign my commits, release tags, e-mail and the documents I issue, and maintain a public portal through which the authenticity of signed documents can be verified by anyone. I treat reproducibility as a property of the engineering itself, not a courtesy added afterward, and self-hosting as a methodological consequence rather than a preference: the provenance and integrity of an artifact are only as trustworthy as the chain that produced and serves it, and assertions of correctness or provenance carry weight only insofar as a third party can confirm them.

The repositories below are the public work under this account, together with the upstream extension I contribute to: research still in progress, the conventions the other projects are built to, and MIT-licensed archives of completed academic and engineering work — embedded systems, web platforms, robotics, and cryptographic education. The archived projects are preserved as records rather than maintained as living tools, documented so that their methods and results remain legible after the work has closed.


Repositories

  • anti-skid-verification — two-layer functional-equivalence verification for safety-critical FPGA rail retrofits (IEC 61508 / IEEE 1012); active research, paper forthcoming.
  • thesis-fentwums-container-extension — M.Sc. thesis: the report and the cross-platform evaluation apparatus for the container extension below, benchmarking synthesis, place-and-route and simulation across iCE40 and ECP5 with the upstream sources pinned as submodules.
  • FEntwumS.ContainerExtension — OneWare Studio plugin routing FPGA/EDA toolchains (GHDL, Yosys, nextpnr, Verilator, Icarus Verilog) through ephemeral Docker/Podman containers with a native-host fallback and pinned-image reproducibility; the extension the thesis evaluates, contributed to the FEntwumS project (active research).
  • template — the project template the repositories here are built to: the meta-file family, authorship standard, and build, release and signing conventions.
  • component-lending-system — PHP/MySQL lending platform for an embedded-systems lab, with tiered role-based access and stock recalculated by schema triggers.
  • coupon-management — Django platform with polyglot persistence and a reproducible PostgreSQL/MongoDB benchmark.
  • nao-ball-pickup — vision-guided ball detection and pickup for the SoftBank NAO 6 humanoid.
  • raven-one-simulink — educational RSA and MD5 simulator exposing every intermediate computation (RFC 8017 / RFC 1321).
  • warehouse-management-system — multi-tier Java Swing warehouse client over JPA/MySQL.

Cryptographic Verification & Security

The documents I issue, my e-mail, and the commits and tags in the repositories under this account are cryptographically signed, so their authenticity, integrity, and origin can be demonstrated rather than asserted. Two independent mechanisms are used, each verifiable on its own.

Documents & e-mail — official PDF documents and e-mail are signed with an S/MIME certificate.

  • Verify: check a signature in real time at mtorun0x7cd.com/verify, or download the public S/MIME certificate and key policy.

  • Certificate fingerprint — confirm the certificate for info@mtorun0x7cd.com (issued by D-Trust SBR CA 1-22-1 2022) against its SHA-256 fingerprint before trusting it:

    11:BC:CF:B3:93:93:06:17:E5:95:87:8A:00:B3:82:43:AC:76:13:00:3E:3A:76:0E:98:B2:AA:05:BF:AD:55:A5
    

Code — commits and tags in the repositories under this account are signed with an SSH key; GitHub renders these as Verified.


Support & Sponsorship

If you find my work or research valuable, you can support it:

  • Sponsor on GitHub: Support me via GitHub Sponsors.

  • Buy Me a Coffee: Send a one-time or monthly contribution via Buy Me a Coffee.

  • Cryptocurrency Donations:

    View Bitcoin (BTC) & Monero (XMR) Addresses

    Bitcoin (BTC):

    1JayXfpV9a3UxjUGVF3n6diD3MnBugnir9
    

    Monero (XMR):

    48rsHksR1PH2wBb8GChnBbdNXDMUVKb2S2jsgKyVoKJx7TAwJaTTcxHbSDePyBFyEPAxxW9YZA6j5HxEEkjn4e6KN85KUM3
    
  • Support Portal: For more details, visit mtorun0x7cd.com/support.


Contact

Mert Torun, M.Sc. — IT Security Architect · Systems Engineer
mtorun0x7cd · Research & Development

Pinned Loading

  1. anti-skid-verification anti-skid-verification Public

    Two-layer verification methodology for safety-critical FPGA rail retrofits: functional equivalence via VHDL simulation, hardware measurement, and scenario testing.

    TeX

  2. thesis-fentwums-container-extension thesis-fentwums-container-extension Public

    Master's thesis (TH Köln, M.Sc.): the report and evaluation apparatus for the FEntwumS OneWare container extension, with the OneWare/FEntwumS sources pinned as submodules.

    TeX

  3. FEntwumS/FEntwumS.ContainerExtension FEntwumS/FEntwumS.ContainerExtension Public

    OneWare Studio plugin that transparently routes FPGA/EDA toolchains (GHDL, Yosys, nextpnr, Verilator, Icarus Verilog) through ephemeral Docker/Podman containers with a native-host fallback, live co…

    C#

  4. template template Public template

    Project template: the meta-file family, authorship standard, and build, release, and signing conventions.

    Shell