Curriculum Vitæ(Resume

)
adulau@foo.be rue du faubourg, 10 B6811 Les Bulles - Chiny (Belgium) Tel. +32(0)61460742 Marital Status : Single Date of Birth : 14/05/1977

Alexandre J.D. Dulaunoy
Last update : May, 2004

Objectives
• To be immersed in an open environment that promotes Free Software philosophy and innovation, • To share,extend and use my knowledge in that environment.

Work Experience
SES ASTRA, Luxembourg IT Security Officer (ITSO) 05/2004 – present

• Design and implementation of the Computer Security Program,

Conostix, S.A. Luxembourg Co-founder and Chief Technology Officer (CTO)

07/2001 – 04/2004

• Research and Development activities about the Security Information Management (SIM), • Various computer security consulting and software development services for european customers (financial institution, telecom sector and public sector),

Ubizen, S.A. Luxembourg Senior Security Consultant

07/2000 – 07/2001

• Design and implement network infrastructure for securing network in major financial institution in Grand-Duchy of Luxembourg and Europe, • Audit existing network and application infrastructure in multiple financial institution to find security weak point and provide solutions, • Developement of specific software tools for integrating, auditing and monitoring network security infrastructure, • Manage multiple technical issue and act as ”a problem solver” for several critical situations. I.B.T., S.A (now part of Sylis), Belgium Network and System Engineer 09/1998 – 06/2000

• Network environment specialist for customer (Industrial, Services & Public companies) - Design and implementation

2

• Network management of the Internal LAN/WAN (4 sites) & internet connectivity services (firewall,proxy,smtp,unix,... services) • Intranet / Internet application developer - Architecture and developement Freelance IT Consultant Network and System Engineer 09/1997 – 05/2004

• Security Analyst - External and internal computer security audit, • Unix, Network and Security integration/administration (ULg, ITT Germany, BeFree S.A. and various Internet and Telecom Services Provider in Europe), • Various software development for network and security application, • Various custom free software development and modification for security and internet application.

Associative Working Experience
CSRRT-LU, ASBL Co-founder and Secretary 10/2002 – present

CSRRT-LU (Computer Security Research and Response Team) is a cooperative organization for helping computer security research in Luxembourg and Europe. My main tasks are in CSRRT-LU : • Setup of the organization (legal and pratical) and defining the research policy, • Technical design and setup of the incidents handling infrastructure, • Install and Management of the OpenPGP public key infrastructure for Luxembourg, • Honeylux research project activities : – Design, implement and analyze honeynet infrastructure,

3

– Reverse engineered various suspicious softwares found in Honeynet, – Forensic analysis of compromised operating system and hosts. AEL, ASBL Co-founder and President 09/2001 – present

Association Electronique Libre is a belgian non governmental organization for protecting fundamental rights in the information society. My main tasks (non-exhaustive) : • Talks given about the usage of open standards, Free Software licensing and information about rights and legal issue in the information society, • Investigation of Free Software licensing violation, • Investigate legal framework in Belgium and Europe, • Provide technical facilities and legal help for free software projects, CLUSSIL, ASBL Organizer (Workgroup GT-SECSI) 01/2001 – present

CLUb de la S´ curit´ des Syst` mes d’Information - Luxembourg is a e e e computer security association in the Grand-Duchy of Luxembourg. I am the co-organizer of the SECSI Workgroup (initially known as Firewall Workgroup). Free Software Foundation, Inc Associate Member 01/2000 – present

Member of the Free Software Foundation member program (2002) and active as a helper for various tasks in the GNU project since january 2000. APRIL, loi 1901 Member 01/2002 – present

Member of the french Association pour la Promotion et la Recherche en Informatique Libre (APRIL).

4

RTFM (Linux Belgian Team), ASBL Activist

05/1998 – 07/2001

I had an active participation in the GNU/Linux Belgiam User-Group. The participation was around the training and help of the new user to Unix/Linux and Free Software in belgium. I’m also member of the Association for Computing Machinery (ACM). I was also member of the USENIX association but I have left regarding the lack of position regarding software patents. I was also member of various association for protecting fundamental rights in the information society (like the EFF).

Teaching Experience
University of Metz , MIM Temporary teacher 10/2003 – present

Courses given for the DESS SICC classes (S´ curit´ des Syst` mes e e e d’Information et de Communication) at the University of Metz. Classes given : • Security in Software Engineering and the Web Services as a pratical example.

Free software project realization and contribution
I have contributed to various free software and computer security project (from Postfix to OpenBSD and the GNU project). For a more complete list of publicly available software and project, you can check on my web page http://www.foo.be/ or you may contact me.

5

Minimalist Queue Services [MQS] http://www.foo.be/mqs/

05/03 – present

MQS is a minimalist queueing system that provides a set of basic methods in order to offer asynchronous messaging for program/application. Applications can use this type of services in order to store and retrieve messages to a dedicated queue in the queue services. This allows you to avoid direct connection between applications and provides a simple asynchronous communication system. It provides a simple set of XMLRPC methods for pushing and getting messages in a specific queue (so you can use the system with any application that can talk XML-RPC). The queue is stored in a database. MQS plans to provide a basic, reliable and easy to use queueing services. Inter Protocol Flexible Control [IPFC] 05/01 – 12/04 https://savannah.nongnu.org/projects/ipfc/ IPFC is a distributed monitoring solution for different types of devices such as firewalls, routers, mail servers, access-card readers. I have participated in the initial design of IPFC and the initial version.

Papers and publication
OpenSST : Une approche de r´duction de la complexit´ pour les transactions e e electroniques. ´ 05/03 http://www.foo.be/current/opensst/opensst.pdf Software Engineering and Security : a practical approach. Courses given in Luxembourg. available upon request. 04/03

Free Software and Software Engineering 01/03 Courses given in Luxembourg and Belgium. available upon request. Introduction a TCP/IP et aux routeurs de type IOS (Cisco). ` http://www.foo.be/cours/cisco/cours-cisco.pdf 06/00

Various talks given in Europe about Computer Security and FS. 09-97 present Please check my web site for some of them : http://www.foo.be/ 6

Computer Science Knowledge and Skills
Operating Systems
UNIX (philosophy, concept) . . . . . . . . . . . . . . . . from IEEE Posix to X/Open GNU/Linux (multiple distributions) (including Kernel) Debian GNU/Linux . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 2.0 to 3.0 Redhat Linux . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 3.0 to 9 NetBSD (including Kernel) . . . . . . . . . . . . . . . . . . . . . . . . . . . from 1.3.3 to 1.6.1 OpenBSD (including Kernel) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 2.6 to 3.4 Various proprietary UNIX version : NeXTSTEP (on NeXT hardware) . . . . . . . . . . . . . . . . . . . . . . . . . 3.2 and higher Solaris (Sparc and Intel) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 2.6 to 9 AIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 4.1 to 4.3 HP/UX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 10.01 to 11.00 Various Dedicated/Embedded Operating System CISCO IOS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11.3 and higher IPSO (Nokia) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3.1 and higher OS-9 68000 RTOS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . version 2.0 Some Exotic/old OS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . CP/M, TOS, GEM Various proprietary Operating System : OpenVMS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . from 6.2 to 7.3 Microsoft Windows NT, 2000 (Advanced Server) *DOS (Open, Free, DR, MS)

UNIX operation
Server Administration and Maintenance - Hardware / Software Unix tools and scripting - (Perl, sh, Bash, sed, awk...)

Programming Language
Perl . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Unix and WIN32 C . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Unix and Posix Objective C . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Posix and OpenSTEP, Python, Lisp (Elisp, Common Lisp), Scheme, Ruby,

7

basic knowledge of Erlang.

Programming environment
FSF Emacs, GNU software tools (autoconf, gcc, gdb...).

Database
MySQL, Postgresql 6.0/7.X, Cach´ -DBMS - DBI-Perl interface, e DBD/DBI Perl programming interface.

Descriptive Language
HTML,XHTML, XML, SGML, LaTeX.

Software Engineering
In-depth understanding of Free Software/”Open Source”/Libre Software methodology, In-depth knowledge of Free Software/”Open Source”/Libre Software licensing mode and legal aspect.

Standard Process
In-depth understanding of network administration structure (IETF, IANA, RIPE) and related procedure.

Computer Security
In-depth knowledge of network and system security, In-depth understanding of network and system security policies, In-depth knowledge and pratical usage of reverse engineering of GNU/Linux, Unix software and some WIN32 software, Firewall (packet filtering and stateful inspection) : • Checkpoint FW1 3.0 to 4.1 (on NOKIA IPSO, SunOS/Solaris, AIX, Linux, HP/UX, NT), 8

• In-depth knowledge of checkpoint FW1 distributed management, • Cisco PIX (ver 4, 5 and 6) configuration, management and troubleshooting, • Cisco IP Firewall feature Pack (IOS) configuration, management and troubleshooting, • IP Filter : *BSD - ipf : FreeBSD - pf : OpenBSD, • IP Chains / netfilter : Linux Kernel, • Basic knowledge of Raptor firewalls (NT and Solaris). NIDS (Network Intrusion Detection System) : • In-depth knowledge of NIDS functionnality and issues, • In-depth knowledge of Snort, • Knowledge of NFR / Anzen Flight Jacket (n-code), • Knowledge of ISS Realsecure configuration, management and troubleshooting. Crytography and related : • Good knowledge of cryptography algorithms and protocols, • In-depth practical knowledge of various protocols and message formats (OpenPGP, OpenSST, XML-DSIG/Enc), • Pratical management of the OpenPGP infrastructure with pks and sks.

Network
Link • Ethernet (802.3) • ISM Wireless (802.11) • TokenRing (802.5) • WAN (Frame Relay, X.25, HDLC, SDLC) Network • IP (extensive knowledge) (from IPv4 to IPSec), • Failover : CARP (OpenBSD), VRRP, HSRP, IPSTB, • Dynamic routing : RIP, OSPF, BGP, EIGRP, • IPX : routing and basic knowledge of IPX, • Basic knowledge of SNA and DECnet, • Tunnel mode protocol : IPSec, GRE, L2TP, PPTP Transport • TCP (extensive knowledge) and protocol using TCP (HTTP/1.x, POP3, IMAP, DNS, LDAP, TLS, SMTP...) - RFC Knowledge Application 9

• SMTP Server (Sendmail, extensive knowledge of Postfix, Exim and Qmail and knowledge of Microsoft Exchange), • HTTP Server (Apache 1.3 and 2.0 (including as a reverse proxy), IIS, Netscape Fastrack server and Boa), • POP3/IMAP Server (Cyrrus IMAP, UW, Courier-imap), • Proxy Server (Squid, Netscape/Iplanet proxy server), • LDAP Server (Netscape/Iplanet directory server, OpenLDAP), • In-depth knowledge of various free software application used for Internet application.

Network Management
Protocol SNMP, SNMPv2 & RMON, Cisco-Works (and some knowledge of HP/OpenView), Scotty Management tools (TNM), extensive knowledge of MRTG, Perl SNMP Tools and RRD tools.

10

Education and qualifications
• CCSE - Check Point certificate of achievement (CCSE) Firewall-1, • CISCO-CCNA - Cisco Certified Network Associate, • CISCO-CMTDS - Configuring Managing Troubleshooting Dialup Services, • CISCO-ACRC - Advanced Cisco Router Configuration, • Degree BSC in Computing (management) at INPRES/Li` ge/Belgium e (1 year only), • General Certificate of Education at Ath´ n´ e Royal Huy - Speciality in e e Scientific Mathematics.

Languages
• French : Mother language • English : read, written and spoken good • German : Academic knowledge

Miscellaneous
• Driving Licence category B • Sports : Swimming, Speleology • Hobbies : Lecture and electronic music.

11