Todd C. Miller					410-814-6877 (phone)
1231 Riverside Ave				Todd.Miller@courtesan.com 
Baltimore, MD 21230				http://www.courtesan.com/todd 


EDUCATION:

 o Bachelor of Science in Computer Science, Dec 1997
   University of Colorado, Boulder
    - Senior Thesis: Scientific Visualization Tool for Chemical Engineering Data

WORK EXPERIENCE:

 o Message Systems, Inc.  				Columbia, MD
   Software Engineer 					Mar. 2008 - Present
    - Part of a small team developing the Ecelerity mail transport agent.
    - Responsibilities include general development and testing of the MTA as
      well as release engineering.

 o Tresys Technology, LLC.				Columbia, MD
   Principal Engineer					May 2007 - Mar. 2008
    - Principal Engineer of the Funded Research & Development team.
    - Responsible for oversight of multiple projects within the
      FR&D group, which specializes in researching techniques to
      increase the usability of Security Enhanced Linux (SELinux).
    - Provide technical oversight and guidance for research tasks.

 o SPARTA, Inc.						Columbia, MD
   Principal Engineer					Sep. 2005 - Mar. 2007
    -  Led a small team of developers responsible for the production of
       a security-enhanced version of Apple's Mac OS X operating system,
       utilizing type enforcement and mandatory access controls. 
    -  Extended the SELinux FLASK architecture to secure Mach
       inter-process communication as present in Mac OS X. 
    -  Extended and enhanced the TrustedBSD MAC Framework for the Darwin
       kernel, portions of which will appear in Mac OS 10.5 (Leopard).

 o Looking Glass Systems, LLC.				Boulder, CO
   Senior Programmer and System Administrator		Feb. 2005 - Sep. 2005 

    - Served as part of a team to design and develop an agent-based
      monitoring system for Windows and UNIX systems. 
    - Responsible for the design and implementation of an agent for UNIX-like
      systems that interoperates with the LG Vision server software.
    - Was also responsible for the installation and maintenance of
      network and computing resources. 
   
 o GratiSoft, Inc.					Boulder, CO 
   President						Oct. 2003 - Feb. 2005 
    - GratiSoft provided commercial support for the Sudo root privilege
      control package as well as consulting services for OpenBSD and other
      Open Source software. 
     
 o Distributed Systems Lab, University of PA		Philadelphia, PA 
   Sr. Systems Programmer				Dec. 2001 - Oct. 2003 
    - Added KeyNote trust-management support to the Apache web server. 
    - Continued to enhance the OpenBSD operating system on a daily basis. 
	
 o Computer Science Operations Group, University of CO	Boulder, CO 
   Sr. System Administrator Oct. 1993 - Dec. 2001 
    - One of three full-time UNIX system and network administrators in charge
      of the UNIX computing resources for the Computer Science Department. 
    - Managed a network of approximately 350 UNIX workstations and X-terminals
      located in undergraduate, masters, and research labs as well as in faculty
      offices. 
    - Responsible for day-to-day operation of department-wide computer resources
      and computer support. 
	    
 o Undergraduate Operations Group, University of CO	Boulder, CO 
   Manager						Sep. 1992 - Apr. 1993 
    - Assigned as Manager and Senior System/Network Administrator for a lab of
      70 workstations. 
    - Supervised four part-time student employees and several student
      volunteers. 
    - Responsible for day-to-day operation of the lab, including user support.

 o UUNET Technologies					Falls Church, VA 
   Assistant Postmaster					May 1992 - Aug. 1992
    - Helped administer mail, news, and UUCP on Sun SPARC workstations. 
    - Wrote a database to track information requests from potential customers. 
    - Ported programs from BSD Networking Release 2 to SunOS 4.1.2. 
    - Implemented secure versions of Kermit, xmodem, ymodem, and zmodem for
      UUNET's dial-up software archive. 
 
 o Undergraduate Computer Lab, University of Colorado	Boulder, CO 
   System Administrator					Jan. 1991 - Apr. 1992 
    - Responsibilities included hardware and software installations, network
      troubleshooting, and user support. 
    - Assisted in the administration of the Computer Science Departments
      research network of UNIX workstations. 

SKILLS:

Languages: C/C++, Perl, Java, Bourne Shell, Korn Shell, C Shell, Sed, Awk 

Operating Systems: OpenBSD, FreeBSD, Mac OS X, Solaris, Tru64 UNIX, HP-UX,
    IRIX, Linux, SELinux 

Security: Extensive experience writing secure code and auditing code for
    security-related errors 

Workstations: Sun Microsystems, Digital, Hewlett-Packard, Silicon Graphics,
    IBM, Apple 

Miscellaneous: Excellent troubleshooting and debugging skills 

OPEN SOURCE PROJECTS:

2007 - Present	One of four upstream maintainers of the SELinux tool chain.
2001 - Present	Major contributor to ISC cron (formerly Vixie cron).
1996 - Present	Core member of the OpenBSD operating system project.
		Participated in multiple security audits of the OpenBSD code
		base.  Responsible for the OpenBSD C library and large portions
		of the OpenBSD user space.
1993 - Present	Lead developer of the Sudo root privilege control package. 
1993 - Present	Contributor to other various and sundry Open Source projects. 

PUBLICATIONS:

"Security-Enhanced Darwin: Porting SELinux to Mac OS X",
    Proceedings from the Third Annual Security Enhanced Linux Symposium
    in Baltimore, MD, 2007.

"UNIX System Administration Handbook, Third Edition", contributing author. 

"strlcpy and strlcat: Consistent, Safe, String Copy and Concatenation",
    Proceedings from USENIX Annual Technical Conference in Monterey, CA, 1999. 

"satool: A System Administrators Cockpit", Proceedings from USENIX LISA VII
    Conference (Large Installation Systems Administration) in Monterey, CA,
    1993.