Jesus Molina
|
| Research
Interests |
Trusted Computing, Intrusion Detection, Embedded Systems
| | Summary |
- Member of the Trusted Computing Working Groups
- Experience with advanced Intrusion Detection Systems
- Knowledge in all facets of computer security, including protocols, TCG, IPSEC, WEP,
802.1x, Cryptography (DES, AES, RSA), E-commerce, Networking, Firewalls, PKI, VPN,
Intrusion detection Systems (Tripwire, Snort)
- Experience with embedded systems and Linux Kernel programming
- Experience with wireless protocols and wireless security
- Experience implementing secure protocols and performing secure auditing for protocols and software
- Highly productive in teams and individual projects, strong research skills and
proven problem solving and resolution skills, proven leadership capabilities
- Cowriter of five patents pending approval
| | Experience |
| Fujitsu Laboratories of America |
R&D Engineer |
| College Park, MD |
September 2002 - Present |
- Performed a security audit in a mobile commerce protocol and mobile commerce software
- Developed two patent pending secure mobile commerce technologies
- Developed a wireless e-commerce device, including Kernel (Arm-linux), user
space software, wireless connection and transaction protocols
- Developed a patent pending mobile voting protocol
- Patched ARM-linux Kernel, created a keyboard kernel module, support for a LCD display and created patches for the Spectrum-24 wireless card to
improve AP-scanning
- Developed the user-interface using C and CGI, and created client/server
application used by the e-commerce device, audited a secure e-commerce protocol, developed a voting application using new crypto-primitives
| Maryland Information Systems Security Lab |
Faculty Research Assistant |
| College Park, MD |
January 2001 - Present |
- Worked in the use of embedded systems as Intrusion Detection Systems, created
Linux drivers for different devices, performed research in wireless security
- Create a secure embedded filesystem integrity checker and a Patent Pending embedded memory integrity checker (Komoku and Copilot)
| University of Maryland |
Teaching Assistant |
| College Park, MD |
January 2000 - January. 2001 |
- Taught undergraduate classes (level 400) of operating Systems, with special focus on embedded and real-time operating systems
| | Skills |
Programming: C, C++, Perl, Java, J2me, C#, Assembly, Shell scripting,
client/server programming, Linux Kernel programming
Security: Intrusion Detection Systems (Snort, Tripwire, ALVA,
sniffers, etc), exploits, Security software (SSL), Network intrusion
test methods (Nessus, nmap, ncat, Stealth, Saint), Cryptography (DES,
TripleDES, SKIP, RSA, MAC, etc), Key Management(PKI, Kerberos)
Operating Systems: Linux, Embedded Linux, VxWorks, [Open/Net]BSD, Windows 9x/NT/2000/XP
Non-technical skills: Spanish and Catalan (Native), english(fluent), German, Chinese,
Arabic, Swahili (Beginner), project management, team worker, leadership
| | Education |
University of Maryland at College Park, College Park MD
Phd. in Electrical Engineering (Candidacy)
University of Maryland at College Park, College Park MD
Master in Computer Engineering with Thesis, December 2001 GPA: 3.5
Universidad Politecnica de Catalunya , Barcelona, Spain
Bachelor's in Electrical Engineering, July 1999
| | Publications |
Yannis Labrou, Jonathan Agre, Lusheng Ji, Jesus Molina, Wei-lun Chen: Wireless Wallet. To be presented at Mobiquitous 2004
Nick L. Petroni, Jesus Molina, Timothy Fraser, William A. Arbaugh: Copilot: A Coprocessor Based Runtime Integrity Monitor. To be presented at 13th Usenix Security Symposium 2004
Jesus Molina, William A. Arbaugh: Using Independent
Auditors as Intrusion Detection Systems. ICICS 2002: 291-302, December 9-12, 2002 Springer 2002, ISBN 3-540-00164-6
Jesus Molina: Using Independent Auditors for Intrusion Detection Systems. Master's Thesis, July 2001
Jesus Molina: Hardware Implementation of an Authentication Protocol Using Kerberos. Senior's Thesis, July 2000
| | Patent Applications |
Wireless Wallet.
Inventors: Yannis Labrou, Lusheng Ji, Jonathan Agre, Jesus Molina Terriza, Wei-lun Chen.
Opinion registering application for a universal pervasive transaction framework.
Inventors: Yannis Labrou, Lusheng Ji, Jonathan Agre, Jesus Molina Terriza
A Method for Monitoring the Integrity of System Memory.
Inventors: Nick L. Petroni Jr., Timothy Fraser, Jesus Molina, and William A. Arbaugh
| | Talks |
Using Independent Auditors as Intrusion Detection Systems, ICICS 2002 (Singapore)
Embedded Systems as Independent Auditors, IEEE Security 2001(short
presentations, Oakland, CA)
| | Awards and Courses |
Windriver facilities: Official Tornado 2.1 and VxWorkscourse, Alameda,
CA, May 2002
University of Maryland: Awarded in recognition of the
services to the ECE department committees (1999-2000)
| Other
Achievements | -Assistant Editor and Theater Reviewer for LanacionUSA hispanic newspaper
-Founder of the cultural nonprofit DCcultura
-Covered the Cannes Film Festival for LanacionUSA Hispanic newspaper
-Webmaster and founder of the cultural portal www.dccultura.com
-Reviewed more than 50 plays for different cultural publications
-Group Leader in various International Student Conferences, including the International Student Week of Tanzania and the International Student Week of Illmenau
| | Selected Projects |
Komoku Project
Develop an embedded system which could perform as an integrity tool once plugged into the
PCI bus of the host machine. The embedded system used was the Intel EBSA-285, composed
by an ARM SA-110 processor and the 21285 Core logic. The project involved creating a
bootloader and Patches for the ARM-Linux OS, including a polled IDE driver and a locking
mechanism between the host and the embedded co-processor. The director of the project Is
William Arbaugh
http://www.missl.cs.umd.edu/
Using Independent Auditors for IDS
My Master Thesis at University of MD based in the Komoku project. Available at
http://www.jesusmolina.com/resume.html
Intel Pentium Microcode Updates
The P15/P6 family processors have the capability to correct specific errata through the loading
of an Intel-supplied data block. This feature is highly obscure and undocumented. This project
tried to explain how the microcode updates are composed, what errata they can fix and how
they can be signed or encrypted.
http://microcodes.sourceforge.net
Hardware Implementation of an authentication protocol using Kerberos
Design and Describe different designs and approaches to the implementation of a client and
server authentication service in hardware, based on Kerberos V.5, the most widely-used
authentication protocol.
Explore the security levels accomplished by these different hardware implementations.
Senior thesis at the Universidad Politecnica de Catalunya available at
http://www.jesusmolina.com/resume.html
Plant Population software
Software created to represent the plant population of different sites. The software, created for
the Linux OS, grabs the map from Mapquest for a set of sites, and creates graphs in the
position of the sites, proportional to the population of the sites (For examples, a circle), Using
the ImageMagick libraries.
This Software has been used for the talk "A landscape-level characterization of seed bank-
vegetation relationships in tidal freshwater marshes and swamps" to be presented at the
Society of Wetland Scientist's 23rd Annual Conference, held at Like Placid NY
http://popmap.sourceforge.net
Intelligent IDE controller
Create an integrity tool using FPGA technology. This hardware device can be attached to the
IDE controller, sending the raw ATA commands to an embedded controller, which will recreate
the file system in parallel, performing as a transparent file system integrity tool which could
detect undesired changes to the hard disk in near real-time.
Work in progress.
|
|