Resume

NAOMARU ITOI
21 Willow Rd., Apt. 9, Menlo Park, CA 94025
510-996-8625
naomaru.itoi@gmail.com
http://www.citi.umich.edu/u/itoi/

OBJECTIVE
Contracting position as a software architect in the areas of smart cards, security, mobile devices, and operating systems.

SUMMARY OF QUALIFICATIONS

Extensive technical experience with smart cards, computer security, mobile device programming, and operating systems.
Proven architect / technical lead, as displayed in the numerous important projects I led.
Proven researcher, as displayed in publication, with Ph.D.

WORK EXPERIENCE

Founder, PhoneID.org, April 2007 to Present

As founder and primary developer of PhoneID Project, developing KeePass Password Manager for mobile phone, and authentication framework which uses mobile phone as security token.
http://www.phoneid.org/

Security Architect, Arcot Systems, Inc. March 2005 to April 2007

Achieved FIPS 140 certification for Arcot's core cryptographic module.
Deveoped and maintained core cryptographic module.
Designed and developed smart card management system.

Smart Card Solution Architect, ActivCard, Inc. October 2002 to March 2005

Designed and led development of smart card management systems at Department of Homeland Security (DHS).
Contributed to smart card management projects in National Aeronautics And Space Administration (NASA) and Department of Veterans Affairs (VA).
Led development of user authentication product on BREW platform for a Japanese telecommunication company.
Designed and lead the development of Gold for UNIX (MacOS X, Linux, Solaris), a middleware/application product which involves smart cards, public key infrastructure, GUI, and integration with operating systems. [12]

Software Engineer (Research Engineer), ActivCard, Inc. November 2001 to October 2002

Developed security products that involve smart card, hardware security modules, public key interface, and biometrics.

Technical Staff, Sun Microsystems. February 2001 to November 2001

Developed Open Card Framework, Sun's smart card middleware.
Worked with Radia Perlman to develop a secure payment mechanism.

Research Assistant, Center for Information Technology Integration, University of Michigan
May 1997 to January 2001
A Ph.D. student / research assistant with Professor Honeyman.

Improved security of Kerberos client by integrating smart cards [1] [4].
Provided single sign-on and configurability of authentication mechanism on Windows NT [2].
Developed the first PAM-Kerberos V5 module [6].
Developed filesystem to ease access to smart cards on OpenBSD and Windows NT [3] [4].
Developed smart card-secured cryptographic file system [5].
Developed secure operating system bootstrap with smart cards. [9].
Developed framework to connect smart cards to the Internet [10].

Intern, IBM T. J. Watson Research Center. May 1999 to October 1999
Worked as a developer / researcher under Elaine Palmer.

Improved security of Kerberos server by integrating secure coprocessor [8].

Teaching Assistant, Computer Science & Engineering, U of M. January 2000 to April 2000
Assisted Professor Honeyman in teaching a smart card course [11]. EDUCATION
University of Michigan, Computer Science and Engineering, Ann Arbor, Michigan, USA
Ph.D., May 1998 - December 2000
M.S., September 1996 - May 1998
Final GPA 3.92/4.00

In Computer Networks class, developed a Java toolkit for TCP-like reliable multicast protocol [7].

PUBLICATIONS
Most of the papers are available as CITI Technical Reports in http://www.citi.umich.edu/techreports/.

1: "Smartcard Integration with Kerberos V5," USENIX Workshop on Smartcard, May 1999.
2: "Pluggable Authentication Module for Windows NT," In Proceedings of 2nd USENIX Windows NT Symposium, August 1998.
3: "SCFS: A UNIX Filesystem for Smartcards," USENIX Workshop on Smartcard, May 1999.
4: "Practical Approach Toward Secure Operating Systems with Smartcards," Workshop On Hot Topics in Operating Systems, March 1999, Rio Rico. http://www.citi.umich.edu/u/itoi/hotos/hotos.ps
5: "Smartcard Secured Cryptographic File System," Will be submitted to USENIX Security.
6: PAM-Kerberos V5 module. Used in public. http://www.kernel.org/pub/linux/libs/pam/modules.html
7: "Scalable, Reliable Multicast (SRM) toolkit," Used in classes in the U of M. http://www.citi.umich.edu/SRMtoolkit-finalReport.doc
8: "Secure Coprocessor Integration with Kerberos V5," USENIX Security Symposium, August. 2000.
9: "Personal Secure Booting," Will be submitted to USENIX Security.
10: "Secure Internet Smartcard," Java Card Workshop, Canes, France, September, 2000.
11: "Smartcard Seminar Material," http://www.citi.umich.edu/eecs598/
12: "Gold For UNIX," http://www.activcard.com/newsroom/press_releases/062203_us.html?m=0

SKILLS Computer Skills:

Languages: C, Java, C++, Visual C++, JavaScript, Visual Basic, JSP, Verilog, Perl, Tcl/Tk, CSH.

Smart Cards/HSMs: ISO-7816, Open Platform, Global Platform, nCipher nShield, Chrysalis Luna, Schlumberger Cyberflex, Multiflex, G&E Starcos, iButton, IBM 4758.

Mobile Devices: JavaCard, PalmPilot, BREW.

Biometrics:Precise Biometrics, HP iPAQ.

Servers:IIS, iPlanet Webserver, Adobe Workflow Server.

Operating systems: Linux, Windows-NT/2000/2003/XP, Solaris, OpenBSD, MacOS X.

Operating system kernels: OpenBSD-2.* and Linux-2.*.

Libraries: UNIX, Win32, Platform SDK, GINA, ImageWare EPI Builder, Cocoa, Carbon, Qt, multi-threading, Kerberos, OpenSSL.

Network: TCP/UDP/IP, multicasting, and Sun RPC.

System Administration: OpenBSD-2.*, Windows-NT, Linux-2.*, SunOS4.*, and Solaris-2.*.

Communication Skills:

Communicate with native English-speaking computer professionals daily for more than 10 years.

Native Japanese speaker.

REFERENCES
Professor Peter Honeyman <honey@citi.umich.edu>
Mr. Dominic Fedronic <dom@actividentity.com>
Mr. Jerome Becquart <Jerome.Becquart@actividentity.com>