You are on page 1of 11

Curriculum Vitæ(Resume

)
adulau@foo.be Alexandre J.D. Dulaunoy
rue du faubourg, 10 Last update : May, 2004
B6811 Les Bulles - Chiny (Belgium)

Tel. +32(0)61460742
Marital Status : Single
Date of Birth : 14/05/1977

Objectives

• To be immersed in an open environment that promotes Free
Software philosophy and innovation,
• To share,extend and use my knowledge in that environment.
Work Experience

SES ASTRA, Luxembourg 05/2004 – present
IT Security Officer (ITSO)

• Design and implementation of the Computer Security Program,

Conostix, S.A. Luxembourg 07/2001 – 04/2004
Co-founder and Chief Technology Officer (CTO)

• Research and Development activities about the Security Information
Management (SIM),
• Various computer security consulting and software development
services for european customers (financial institution, telecom sector
and public sector),

Ubizen, S.A. Luxembourg 07/2000 – 07/2001
Senior Security Consultant
• Design and implement network infrastructure for securing network
in major financial institution in Grand-Duchy of Luxembourg and
Europe,
• Audit existing network and application infrastructure in multiple fi-
nancial institution to find security weak point and provide solutions,
• Developement of specific software tools for integrating, auditing and
monitoring network security infrastructure,
• Manage multiple technical issue and act as ”a problem solver” for
several critical situations.

I.B.T., S.A (now part of Sylis), Belgium 09/1998 – 06/2000
Network and System Engineer
• Network environment specialist for customer (Industrial, Services &
Public companies) - Design and implementation

2
• Network management of the Internal LAN/WAN (4 sites) & internet
connectivity services (firewall,proxy,smtp,unix,... services)
• Intranet / Internet application developer - Architecture and devel-
opement

Freelance IT Consultant 09/1997 – 05/2004
Network and System Engineer
• Security Analyst - External and internal computer security audit,
• Unix, Network and Security integration/administration (ULg, ITT
Germany, BeFree S.A. and various Internet and Telecom Services
Provider in Europe),
• Various software development for network and security application,
• Various custom free software development and modification for
security and internet application.

Associative Working Experience

CSRRT-LU, ASBL 10/2002 – present
Co-founder and Secretary
CSRRT-LU (Computer Security Research and Response Team) is a cooper-
ative organization for helping computer security research in Luxembourg
and Europe. My main tasks are in CSRRT-LU :
• Setup of the organization (legal and pratical) and defining the re-
search policy,
• Technical design and setup of the incidents handling infrastructure,
• Install and Management of the OpenPGP public key infrastructure
for Luxembourg,
• Honeylux research project activities :
– Design, implement and analyze honeynet infrastructure,

3
– Reverse engineered various suspicious softwares found in Hon-
eynet,
– Forensic analysis of compromised operating system and hosts.

AEL, ASBL 09/2001 – present
Co-founder and President
Association Electronique Libre is a belgian non governmental organization
for protecting fundamental rights in the information society. My main tasks
(non-exhaustive) :
• Talks given about the usage of open standards, Free Software licens-
ing and information about rights and legal issue in the information
society,
• Investigation of Free Software licensing violation,
• Investigate legal framework in Belgium and Europe,
• Provide technical facilities and legal help for free software projects,

CLUSSIL, ASBL 01/2001 – present
Organizer (Workgroup GT-SECSI)
CLUb de la Sécurité des Systèmes d’Information - Luxembourg is a
computer security association in the Grand-Duchy of Luxembourg. I am
the co-organizer of the SECSI Workgroup (initially known as Firewall
Workgroup).

Free Software Foundation, Inc 01/2000 – present
Associate Member
Member of the Free Software Foundation member program (2002) and
active as a helper for various tasks in the GNU project since january 2000.

APRIL, loi 1901 01/2002 – present
Member
Member of the french Association pour la Promotion et la Recherche en
Informatique Libre (APRIL).

4
RTFM (Linux Belgian Team), ASBL 05/1998 – 07/2001
Activist
I had an active participation in the GNU/Linux Belgiam User-Group.
The participation was around the training and help of the new user to
Unix/Linux and Free Software in belgium.
I’m also member of the Association for Computing Machinery (ACM). I
was also member of the USENIX association but I have left regarding the
lack of position regarding software patents. I was also member of various
association for protecting fundamental rights in the information society
(like the EFF).

Teaching Experience

University of Metz , MIM 10/2003 – present
Temporary teacher
Courses given for the DESS SICC classes (Sécurité des Systèmes
d’Information et de Communication) at the University of Metz. Classes
given :
• Security in Software Engineering and the Web Services as a pratical
example.

Free software project realization and contribution

I have contributed to various free software and computer security project
(from Postfix to OpenBSD and the GNU project). For a more complete list
of publicly available software and project, you can check on my web page
http://www.foo.be/ or you may contact me.

5
Minimalist Queue Services [MQS] 05/03 – present
http://www.foo.be/mqs/
MQS is a minimalist queueing system that provides a set of basic methods
in order to offer asynchronous messaging for program/application.
Applications can use this type of services in order to store and retrieve
messages to a dedicated queue in the queue services. This allows you
to avoid direct connection between applications and provides a simple
asynchronous communication system. It provides a simple set of XML-
RPC methods for pushing and getting messages in a specific queue (so
you can use the system with any application that can talk XML-RPC). The
queue is stored in a database. MQS plans to provide a basic, reliable and
easy to use queueing services.

Inter Protocol Flexible Control [IPFC] 05/01 – 12/04
https://savannah.nongnu.org/projects/ipfc/
IPFC is a distributed monitoring solution for different types of devices
such as firewalls, routers, mail servers, access-card readers. I have
participated in the initial design of IPFC and the initial version.

Papers and publication

OpenSST : Une approche de réduction de la complexité pour les transactions
électroniques. 05/03
http://www.foo.be/current/opensst/opensst.pdf
Software Engineering and Security : a practical approach. 04/03
Courses given in Luxembourg. available upon request.
Free Software and Software Engineering 01/03
Courses given in Luxembourg and Belgium. available upon request.
Introduction à TCP/IP et aux routeurs de type IOS (Cisco). 06/00
http://www.foo.be/cours/cisco/cours-cisco.pdf
Various talks given in Europe about Computer Security and FS. 09-97 present
Please check my web site for some of them : http://www.foo.be/

6
Computer Science Knowledge and Skills

Operating Systems
UNIX (philosophy, concept) . . . . . . . . . . . . . . . . from IEEE Posix to X/Open
GNU/Linux (multiple distributions) (including Kernel)
Debian GNU/Linux . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 2.0 to 3.0
Redhat Linux . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 3.0 to 9
NetBSD (including Kernel) . . . . . . . . . . . . . . . . . . . . . . . . . . . from 1.3.3 to 1.6.1
OpenBSD (including Kernel) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 2.6 to 3.4
Various proprietary UNIX version :
NeXTSTEP (on NeXT hardware) . . . . . . . . . . . . . . . . . . . . . . . . . 3.2 and higher
Solaris (Sparc and Intel) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 2.6 to 9
AIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 4.1 to 4.3
HP/UX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 10.01 to 11.00
Various Dedicated/Embedded Operating System
CISCO IOS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11.3 and higher
IPSO (Nokia) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3.1 and higher
OS-9 68000 RTOS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . version 2.0
Some Exotic/old OS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . CP/M, TOS, GEM
Various proprietary Operating System :
OpenVMS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 6.2 to 7.3
Microsoft Windows NT, 2000 (Advanced Server)
*DOS (Open, Free, DR, MS)

UNIX operation
Server Administration and Maintenance - Hardware / Software
Unix tools and scripting - (Perl, sh, Bash, sed, awk...)

Programming Language
Perl . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Unix and WIN32
C . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Unix and Posix
Objective C . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Posix and OpenSTEP,
Python,
Lisp (Elisp, Common Lisp),
Scheme,
Ruby,

7
basic knowledge of Erlang.

Programming environment
FSF Emacs,
GNU software tools (autoconf, gcc, gdb...).

Database
MySQL,
Postgresql 6.0/7.X,
Caché-DBMS - DBI-Perl interface,
DBD/DBI Perl programming interface.

Descriptive Language
HTML,XHTML,
XML,
SGML,
LaTeX.

Software Engineering
In-depth understanding of Free Software/”Open Source”/Libre Software
methodology,
In-depth knowledge of Free Software/”Open Source”/Libre Software
licensing mode and legal aspect.

Standard Process
In-depth understanding of network administration structure (IETF,
IANA, RIPE) and related procedure.

Computer Security
In-depth knowledge of network and system security,
In-depth understanding of network and system security policies,
In-depth knowledge and pratical usage of reverse engineering of
GNU/Linux, Unix software and some WIN32 software,
Firewall (packet filtering and stateful inspection) :
• Checkpoint FW1 3.0 to 4.1 (on NOKIA IPSO, SunOS/Solaris,
AIX, Linux, HP/UX, NT),

8
• In-depth knowledge of checkpoint FW1 distributed manage-
ment,
• Cisco PIX (ver 4, 5 and 6) configuration, management and
troubleshooting,
• Cisco IP Firewall feature Pack (IOS) configuration, management
and troubleshooting,
• IP Filter : *BSD - ipf : FreeBSD - pf : OpenBSD,
• IP Chains / netfilter : Linux Kernel,
• Basic knowledge of Raptor firewalls (NT and Solaris).
NIDS (Network Intrusion Detection System) :
• In-depth knowledge of NIDS functionnality and issues,
• In-depth knowledge of Snort,
• Knowledge of NFR / Anzen Flight Jacket (n-code),
• Knowledge of ISS Realsecure configuration, management and
troubleshooting.
Crytography and related :
• Good knowledge of cryptography algorithms and protocols,
• In-depth practical knowledge of various protocols and message
formats (OpenPGP, OpenSST, XML-DSIG/Enc),
• Pratical management of the OpenPGP infrastructure with pks
and sks.

Network
Link
• Ethernet (802.3)
• ISM Wireless (802.11)
• TokenRing (802.5)
• WAN (Frame Relay, X.25, HDLC, SDLC)
Network
• IP (extensive knowledge) (from IPv4 to IPSec),
• Failover : CARP (OpenBSD), VRRP, HSRP, IPSTB,
• Dynamic routing : RIP, OSPF, BGP, EIGRP,
• IPX : routing and basic knowledge of IPX,
• Basic knowledge of SNA and DECnet,
• Tunnel mode protocol : IPSec, GRE, L2TP, PPTP
Transport
• TCP (extensive knowledge) and protocol using TCP (HTTP/1.x,
POP3, IMAP, DNS, LDAP, TLS, SMTP...) - RFC Knowledge
Application

9
• SMTP Server (Sendmail, extensive knowledge of Postfix, Exim
and Qmail and knowledge of Microsoft Exchange),
• HTTP Server (Apache 1.3 and 2.0 (including as a reverse proxy),
IIS, Netscape Fastrack server and Boa),
• POP3/IMAP Server (Cyrrus IMAP, UW, Courier-imap),
• Proxy Server (Squid, Netscape/Iplanet proxy server),
• LDAP Server (Netscape/Iplanet directory server, OpenLDAP),
• In-depth knowledge of various free software application used
for Internet application.

Network Management
Protocol SNMP, SNMPv2 & RMON,
Cisco-Works (and some knowledge of HP/OpenView),
Scotty Management tools (TNM),
extensive knowledge of MRTG, Perl SNMP Tools and RRD tools.

10
Education and qualifications

• CCSE - Check Point certificate of achievement (CCSE) Firewall-1,
• CISCO-CCNA - Cisco Certified Network Associate,
• CISCO-CMTDS - Configuring Managing Troubleshooting Dialup
Services,
• CISCO-ACRC - Advanced Cisco Router Configuration,
• Degree BSC in Computing (management) at INPRES/Liège/Belgium
(1 year only),
• General Certificate of Education at Athénée Royal Huy - Speciality in
Scientific Mathematics.

Languages

• French : Mother language
• English : read, written and spoken good
• German : Academic knowledge

Miscellaneous

• Driving Licence category B
• Sports : Swimming, Speleology
• Hobbies : Lecture and electronic music.

11