Work history
Computer Scientist
tags:
network security administrati...
How would you describe your time at SPAWAR Systems Center?
Pretty disparate work. I wrote some software using the linux kernel wireless extensions. The project uses a custom antenna selector board that can switch between a configurable number of directional antennas. It selects the antenna with the best signal, which is useful for moving platforms like boats and planes and other such things. I also architected a computer security platform for government laptops that travel to adversarial nation-states. The design was recently given the blessing by forensics analysts in criminal investigative services. I also set up a RedHat Satellite server for our company (>4000 employees, a few hundred redhat servers), developed a clever configuration file methodology for managing all of these systems, and did a log of bug-hunting for RedHat in the process. I am currently writing a network captive portal system to help our users add new machines to our gigantic network in an easy and secure manner.... 
Associate Computer Scientist
tags:
penetration testing network s...
How would you describe your time at Air Force Research Lab?
I was the multi-level operating system expert for AFRL. I developed a research investment roadmap. I penetration tested ISSE Guard (which is a cross-domain gateway, or "guard") and a slew of other contractor-written software. I helped our contractor write their software more securely, and documented what government employees should look for in the future as far as design and implementation flaws are concerned. I was issued an Outstanding Achievement award by my division for my efforts....
Research Assistant
tags:
unix security programming pen...
How would you describe your time at Systems Assurance Institute?
I performed a variety of odd research assistant jobs. I penetration tested some commercial products, like the Sharp Zaurus SL5500. I wrote a vulnerability report for that PDA, and was cited in the NIST publication "Guidelines on PDA Forensics" for my findings. I also pen-tested a network security appliance for a local company (ShoreGroup). They were rather happy with the advice, and continue to award SAI with numerous contracts to this day.
I also wrote some software for SELinux policy analysis. Some other folks in the lab worked on a relational data model for implementing the policy. I helped by making packages and developing a front-end web-based (webmin) gui for the policy engine, based on work by Hitachi SK....
Education
Computer Science
tags:
security research master
How would you describe your time at syracuse university?
I received a well-rounded education not only in computer science (computer security, artificial intelligence) but also a smattering of other interesting topics, such as philosophy, mathematics, computational linguistics, and the fine arts.
Computational Logic
tags:
logic mathematics security
How would you describe your time at Technische Universitaet Dre...?
I studied computational logic, the fundamental mathematics of computer science. My interest at the time lay in applying formal methods techniques to analyzing the user-space programs that ran atop microkernels. I became a bit disillusioned with the scope of this problem, and decided to finish my Master's degree at Syracuse University....
