21 Willow Rd., Apt. 9, Menlo Park, CA 94025
Full-time position as Software Engineering Manager or Software Architect in the areas of security, authentication, authorization, smart card, policy based access control, mobile devices, networks and operating systems.
SUMMARY OF QUALIFICATIONS
- Extensive technical experience.
- Excellent software architect, as displayed in many projects led.
- Dynamic and creative software engineering manager.
- Proven researcher, as displayed in publication, with Ph.D.
Engineering Manager / Architect, NextLabs, Inc., September 2008 to Present
Independent Contractor, Itoi, LLC, April 2007 to September 2008
- Manage the company's core engineering team.
- As an architect, lead all the software development projects in the company's core product, Policy Framework: enhancing its functionality, extensibility, performance, scalability, and portability. Added cryptographic key management capability to Policy Framework.
- Responsible for software specification, design, and architecture documents.
- Oversee the product's entire lifecycle by cooperating with Product Management, Quality Assurance, Professional Service, and Support groups.
- Introduce best practices and efficient work culture to the engineering group, e.g., code review, productive meetings, open discussions, and automated testing.
Security Architect, Arcot Systems, Inc. March 2005 to April 2007
- Designed, developed, and marketed an assisting device for children with autism, which later became Tap To Talk. The device is based on Linux mobile game console, GP2X.
- Developed smart card based solution, including a large-scale issuance system, to protect amusement machines from fraud. Sold it to two major vendors in Japan.
- As founder and primary developer, developed KeePass Password Manager for J2ME mobile phones, and a web based service to transfer keys.
Smart Card Solution Architect / Software Engineer, ActivIdentity, Inc. November 2001 to March 2005
- Achieved FIPS 140 certification for Arcot's core cryptographic module.
- Developed core cryptographic module. Solved its scalability problem which the company had not been able to fix for several years.
- Designed and developed a web based smart card management system.
Technical Staff, Sun Microsystems. February 2001 to
- Designed and led a 15 people team to develop UNIX middleware / application
product which involved smart cards, public key infrastructure, UI, and operating systems.
- Designed and developed web based smart card management systems for Department of Homeland Security (DHS), National Aeronautics and Space Administration (NASA), and Department of Veterans Affairs (VA).
- Led development of user authentication product on
BREW platform for a large Japanese telecommunication company.
- Developed security products that involved smart card, hardware
security modules, public key interface, and biometrics.
Research Assistant, Center for Information Technology
Integration, University of Michigan
- Developed Open Card Framework, Sun's smart card middleware.
- Worked with Radia Perlman to develop a secure payment mechanism.
May 1997 to January 2001
A Ph.D. student / research assistant with Professor
Intern, IBM T. J. Watson Research Center.
May 1999 to October 1999
- Improved security of Kerberos client by integrating smart cards.
- Provided single sign-on and configurability of
authentication mechanism on Windows NT.
- Developed the first PAM-Kerberos V5 module.
- Developed filesystem to ease access to smart cards on
OpenBSD and Windows NT.
- Developed smart card-secured cryptographic file system.
- Developed secure operating system bootstrap with smart cards.
- Developed framework to connect smart cards to the Internet.
Worked as a developer / researcher under Elaine Palmer.
Teaching Assistant, Computer Science & Engineering, U of
M. January 2000 to April 2000
- Improved security of Kerberos server by integrating secure coprocessor.
Assisted Professor Honeyman in teaching a smart card course.
University of Michigan, Computer Science and
Engineering, Ann Arbor, Michigan, USA
Ph.D., May 1998 - December 2000
M.S., September 1996 - May 1998
Final GPA 3.92/4.00
Most of the papers are available as CITI Technical Reports in
Security: Cryptography, Public Key Infrastructure, FIPS 140, XACML.
Libraries: MFC, Win32, Microsoft Platform SDK, OpenSSL, Java Security, Microsoft CryptoAPI, Bouncy Castle, BOOST, GINA, Kerberos, SDL.
Mobile Devices: J2ME, BREW, Linux, JavaCard.
Networking: TCP/UDP/IP, HTML, XML, Web Service, RPC.
Smart Cards/HSMs: ISO-7816, Global Platform, nCipher
nShield, Chrysalis Luna, Axalto and G&E smart cards, IBM 4758.
Servers:Apache, Tomcat, IIS.
Operating Systems: Windows, Linux, Solaris, MacOS X, OpenBSD.
File Systems: OpenBSD, Linux, Windows.
- "Smartcard Integration with Kerberos V5,"
USENIX Workshop on Smartcard, May 1999.
- "Pluggable Authentication Module for Windows NT,"
In Proceedings of 2nd USENIX Windows NT Symposium,
- "SCFS: A UNIX Filesystem for Smartcards,"
USENIX Workshop on Smartcard, May 1999.
- "Practical Approach Toward Secure Operating Systems
Workshop On Hot Topics in Operating Systems, March 1999, Rio Rico.
- "Smartcard Secured Cryptographic File System,"
USENIX Security, 2001.
- PAM-Kerberos 5 Module.
Used in Public.
- "Secure Coprocessor Integration with Kerberos V5,"
USENIX Security Symposium, August. 2000.
- "Personal Secure Booting,"
7th Australian Conference in Information Security and Privacy, 2001.
- "Secure Internet Smartcard,"
Java Card Workshop, Canes, France, September, 2000.
Communicate with native English-speaking computer professionals
daily for more than 14 years.
Native Japanese speaker.
Mr. Mark Gyorey, Senior Director of Client Services, Americas at ActivIdentity <Mark.Gyorey@actividentity.com>
Mr. Dominic Fedronic, Chief Technology Officer at ActivIdentity <email@example.com>
Mr. Jerome Becquart, Vice President at ActivIdentity <Jerome.Becquart@actividentity.com>
Mr. Jim Reno, Senior Vice President of Engineering at Arcot Systems <contact information available on request>