
Founder of RavenWhite, Extricatus and FatSkunk; Technical advisor to LifeLock and CellFony; 100+ patents
San Francisco Bay Area

Founder of RavenWhite, Extricatus and FatSkunk; Technical advisor to LifeLock and CellFony; 100+ patents
San Francisco Bay Area
Using adversarial modeling from the field of cryptography, combined with related modeling of human behavior, I analyse the security of real-life applications and design improved security protocols. The efforts are often aimed at gaining a better understanding of and preventing phishing, pharming, malware spread and click-fraud, but also address incentive problems, advertisement, and privacy. My background involves cryptographic protocol design, theoretical aspects of cryptography, incentive structures, lightweight cryptography and wireless security. I enjoy intellectual property matters.
My Erdös number is 3.
mobile malware, phishing and countermeasures, combined social and technical threats, protocol design, privacy, click-fraud, user interfaces, voting.
(Privately Held; Computer & Network Security industry)
August 2009 — Present (1 year 2 months)
We deal with mobile malware in an entirely new way.
(Privately Held; Consumer Services industry)
March 2009 — Present (1 year 7 months)
(Computer & Network Security industry)
June 2008 — Present (2 years 4 months)
(Computer & Network Security industry)
2007 — Present (3 years )
We develop educational material to promote better security decisions. Visit www.securitycartoon.com for an example of what we can do!
(Computer & Network Security industry)
2005 — Present (5 years )
We believe that phishing is best fought using server-side measures, thereby avoiding educational requirements, support calls, and fears of spoofed requests to "update" software. My role in RavenWhite involves developing the vision of where the threats are headed; coordination of product development; and client contacts.
(Legal Services industry)
January 2005 — Present (5 years 9 months)
I have worked as testifying expert witness in computer and network security for a collection of patent litigation trials, both in the US and in Canada. Please contact me for more information and for references.
(Computer & Network Security industry)
August 2004 — Present (6 years 2 months)
In 2004, IUB made a major effort in building a strong security group (see http://security.informatics.indiana.edu/), with support from the Center for Applied Cybersecurity Research (http://cacr.iu.edu/) and various funding agencies.
(Public Company; XRX; Computer Software industry)
October 2007 — April 2010 (2 years 7 months)
Principal Scientist at PARC, and a member of the security group -- spending much time on understanding fraud, authentication and malware.
(Public Company; rsas; Computer & Network Security industry)
May 2000 — August 2004 (4 years 4 months)
My research was focused on finding the next threats and applications; I made efforts to steer the RSA research towards wireless research, RFID research, and phishing research. Although these directions were not immediately embraced, they are now part of the central research foci of RSA Labs.
(Public Company; LU; Computer & Network Security industry)
June 1997 — May 2000 (3 years )
(Privately Held; 1-10 employees; Computer Software industry)
1985 — 1992 (7 years )
Ran a small software company producing educational software for the Swedish market. Did pretty well until imported software killed us.
PhD , computer science , 1993 — 1997
MSc (civilingenjor) , computer engineering (datateknik) , 1987 — 1992
Fraud, malware, authentication.
Visiting Research Scholar of Anti-Phishing Working Group; member of Internatonal Association for Cryptologic Research and International Identity Theft Technology Council; founding member of eFraudNetwork forum.