Resume

NAOMARU ITOI
21 Willow Rd., Apt. 9, Menlo Park, CA 94025
510-996-8625
naomaru.itoi@gmail.com

OBJECTIVE
Full-time position as Software Engineering Manager or Software Architect in the areas of security, authentication, authorization, smart card, policy based access control, mobile devices, networks and operating systems.

SUMMARY OF QUALIFICATIONS

Extensive technical experience.
Excellent software architect, as displayed in many projects led.
Dynamic and creative software engineering manager.
Proven researcher, as displayed in publication, with Ph.D.

WORK EXPERIENCE

Engineering Manager, Centrify Corporation, April 2011 to Present

Lead and manage 7 people team that develops Centrify Direct Control on MacOS, including smart card feature.
Audit and enhance security features of the product.
Work with internal groups (Product Management, Quality Assurance, other engineering groups) and external companies.

Engineering Manager / Principal Engineer, NextLabs, Inc., September 2008 to April 2011

Manage the company's core engineering team.
As an architect, lead all the software development projects in the company's core product, Policy Framework: enhancing its functionality, extensibility, performance, scalability, and portability. Added cryptographic key management capability to Policy Framework.
Responsible for software specification, design, and architecture documents.
Oversee the product's entire lifecycle by cooperating with Product Management, Quality Assurance, Professional Service, and Support groups.
Introduce best practices and efficient work culture to the engineering group, e.g., code review, productive meetings, open discussions, and automated testing.

Independent Contractor, Itoi, LLC, April 2007 to September 2008

Designed, developed, and marketed an assisting device for children with autism, which later became Tap To Talk. The device is based on Linux mobile game console, GP2X.
http://www.taptotalk.com/
Developed smart card based solution, including a large-scale issuance system, to protect amusement machines from fraud. Sold it to two major vendors in Japan.
As founder and primary developer, developed KeePass Password Manager for J2ME mobile phones, and a web based service to transfer keys.
http://sourceforge.net/projects/keepassj2me/

Security Architect, Arcot Systems, Inc. March 2005 to April 2007

Achieved FIPS 140 certification for Arcot's core cryptographic module.
Developed core cryptographic module. Solved its scalability problem which the company had not been able to fix for several years.
Designed and developed a web based smart card management system.

Smart Card Solution Architect / Software Engineer, ActivIdentity, Inc. November 2001 to March 2005

Designed and led a 15 people team to develop UNIX middleware / application product which involved smart cards, public key infrastructure, UI, and operating systems.
Designed and developed web based smart card management systems for Department of Homeland Security (DHS), National Aeronautics and Space Administration (NASA), and Department of Veterans Affairs (VA).
Led development of user authentication product on BREW platform for a large Japanese telecommunication company.
Developed security products that involved smart card, hardware security modules, public key interface, and biometrics.

Technical Staff, Sun Microsystems. February 2001 to November 2001

Developed Open Card Framework, Sun's smart card middleware.
Worked with Radia Perlman to develop a secure payment mechanism.

Research Assistant, Center for Information Technology Integration, University of Michigan
May 1997 to January 2001
A Ph.D. student / research assistant with Professor Honeyman.

Improved security of Kerberos client by integrating smart cards.
Provided single sign-on and configurability of authentication mechanism on Windows NT.
Developed the first PAM-Kerberos V5 module.
Developed filesystem to ease access to smart cards on OpenBSD and Windows NT.
Developed smart card-secured cryptographic file system.
Developed secure operating system bootstrap with smart cards.
Developed framework to connect smart cards to the Internet.

Intern, IBM T. J. Watson Research Center. May 1999 to October 1999
Worked as a developer / researcher under Elaine Palmer.

Improved security of Kerberos server by integrating secure coprocessor.

Teaching Assistant, Computer Science & Engineering, U of M. January 2000 to April 2000
Assisted Professor Honeyman in teaching a smart card course. EDUCATION
University of Michigan, Computer Science and Engineering, Ann Arbor, Michigan, USA
Ph.D., May 1998 - December 2000
M.S., September 1996 - May 1998
Final GPA 3.92/4.00
PUBLICATIONS
Most of the papers are available as CITI Technical Reports in http://www.citi.umich.edu/techreports/.

1: "Smartcard Integration with Kerberos V5," USENIX Workshop on Smartcard, May 1999.
2: "Pluggable Authentication Module for Windows NT," In Proceedings of 2nd USENIX Windows NT Symposium, August 1998.
3: "SCFS: A UNIX Filesystem for Smartcards," USENIX Workshop on Smartcard, May 1999.
4: "Practical Approach Toward Secure Operating Systems with Smartcards," Workshop On Hot Topics in Operating Systems, March 1999, Rio Rico. http://www.citi.umich.edu/u/itoi/hotos/hotos.ps
5: "Smartcard Secured Cryptographic File System," USENIX Security, 2001.
6: PAM-Kerberos 5 Module. Used in Public.
7: "Secure Coprocessor Integration with Kerberos V5," USENIX Security Symposium, August. 2000.
8: "Personal Secure Booting," 7th Australian Conference in Information Security and Privacy, 2001.
9: "Secure Internet Smartcard," Java Card Workshop, Canes, France, September, 2000.

SKILLS Computer Skills:

Languages: Java, C, C++, Visual C++, Perl, J2ME, Shell, PHP, JavaScript, Java Servlet, SQL.

Security: Cryptography, Public Key Infrastructure, FIPS 140, XACML.

Libraries: MFC, Win32, Microsoft Platform SDK, OpenSSL, Java Security, Microsoft CryptoAPI, Bouncy Castle, BOOST, GINA, Kerberos, SDL.

Mobile Devices: J2ME, BREW, Linux, JavaCard.

Networking: TCP/UDP/IP, HTML, XML, Web Service, RPC.

Smart Cards/HSMs: ISO-7816, Global Platform, nCipher nShield, Chrysalis Luna, Axalto and G&E smart cards, IBM 4758.

Servers:Apache, Tomcat, IIS.

Operating Systems: Windows, Linux, Solaris, MacOS X, OpenBSD.

File Systems: OpenBSD, Linux, Windows.

Communication Skills:

Communicate with native English-speaking computer professionals daily for more than 14 years.

Native Japanese speaker.

REFERENCES
Mr. Mark Gyorey, Senior Director of Client Services, Americas at ActivIdentity <Mark.Gyorey@actividentity.com>
Mr. Dominic Fedronic, Chief Technology Officer at ActivIdentity <dom@actividentity.com>
Mr. Jerome Becquart, Vice President at ActivIdentity <Jerome.Becquart@actividentity.com>
Mr. Jim Reno, Senior Vice President of Engineering at Arcot Systems <contact information available on request>