Risk analysis of Log4Shell (CVE-2021-44228) and mitigation Log4Shell is a high impact exploitable bug in Java logging framework logj4. This vulnerability is basically divided in two parts: log4j2 (which allows Java programs using this component to be misled through specially crafted loggable strings to access attacker-specified URIs) and Java core (which allows unchecked execution of Java code referenced in server responses). The two parts are analyzed separately below.
HardenedVault's main purpose is to deliver a strengthened infrastructure security solution under zero trust model where the root of trust (the most fundamental building block of security) is fully hardened from hardware, firmware to OS kernel. With a secure communication protocol can be used to extend the trust from the root to all services running in the cloud or elsewhere. To those who can't trust a public cloud and willing to build their own secure data infrastructure.