Subject-Matter Expertise: Network Security

Sibling Topics:

See also:

I do not specialize in network security, but I have a solid knowledge and a fair amount of experience with network security and related topics.

Below is a brief summary of my network security related experience:

X.509:: From 1988 to 1990, I was Boeing’s respresentative at NIST (National Institute of Standards and Technology) for X.500 and X.509 PKCS (Public Key Cryptography Systems). I have a solid understanding of the original specifications of X.509 in the Red/Blue/White Books (ITU, CCITT and ISO/OSI). I was also directly involved in selection and deployment of X.509 products within the Boeing office.
PKI:: In the late 1990s and 2000s, I followed and participated in IETF (Internet Engineering Task Force) activities and specifications (RFCs) related to creation of public and private Public Key Infrastructures.
PGP/GPG:: I have followed Zimmerman’s work on Pretty Good Privacy from its beginnings and have assisted with deployments of GPG (Gnu Privacy Guard) within SMBs and large enterprises.
S/MIME:: I have assisted with planning and deployment of Secure MIME in multi-vendor email environments.
SSL, SSH, TLS, HTTPS:: I have a good understanding of the protocols and use of the related libraries. For example, I integrated openssh with GIT for easy and secure common usage.
IPsec:: I have basic familiarity with Layer 3 related security protocols.
OpenVPN:: I have deployed and configured VPN services based on openvpn for a number of Small-Businesses. I am also quite familiar with Cisco’s vpn product and its interoperability with open-source clients.
DTLS, Connection-Less Authentication and Confidentiality:: In the context of MQTT and IoT (Internet of Things), I am familiar with DTLS. I am in the process of updating RFC-2188 (ESRO) that I authored in 1999 to use DTLS.
Firewalls, Network Monitoring, Intrusion Detection, Rootkits:: In the context of operating a medium size data center, I have a fair amount of parctical experience with Linux tools for hardening hosts and monitoring private networks.

Document Actions

This is a libre/halaal Poly-Existential intended to remain perpetually libre/halaal. Consisitent with that intent:
Copyright © 1999-2013 by Free Protocols Foundation.
Permission is granted to make and distribute complete (not partial) verbatim copies of this document provided that the copyright notice
and this permission notice are preserved on all copies. This copyright notice does not apply to republished material.

Libre/Halaal Internet Services Provided At LibreCenter By Neda	Member of By* Federation Of Autonomous Libre Services
This web site has been created based exclusively on the use of Halaal Software and Halaal Internet Application Services. It is part of the By* Federation of Autonomous Libre Services which in turn are part of the Halaal/Libre By* Digitial Ecosystem which incorporate the following software components: Debian GNU/Linux Plone3 qmail, mailfront, ezmlm djbdns apache2 Emacs, Blee