I'm Mike Boberski. I work at Booz Allen Hamilton. I have a background in application security and the use of cryptography by applications.
I have been working for a little less than 15 years on security-related testing programs. These programs include the Trust Technology Assessment Program (TTAP), Common Criteria (CC), FIPS 140-1, FIPS 140-2, and the Joint Interoperability Test Command (JITC) Public Key-Enabled (PKE) Application Testing programs. I have also been working over the same time frame in areas relating to developing Public Key Infrastructure (PKI) software, focusing largely on areas related to Public Key-Enabling applications. I also ran the development team that built, integrated, and maintained the USPS Electronic Postmark (EPM) when it was a server application-based offering, before it was turned into a hosted service.
I have been working recently with the Open Web Application Security Project (OWASP) Foundation to create an Application Security Verification Standard (ASVS). I am the project lead and a co-author of the OWASP Application Security Verification Standard, which is OWASP's first actual standard.
I can be reached at firstname.lastname@example.org.
last revised 01/14/2009