Technical Expertise
Ubuntu and Debian, Arch Linux, Flatcar Container Linux, I rely on TPM2.0, but I’m interested in OpenTitan and RISC-V Silicon Root of Trust chips, I’m excited about the CHERI Alliance for confidential computing secure enclaves, SQL and Postgres, Kubernetes (I prefer k0s over kubeadm, Metal3 over Tinkerbell (Cluster API), CRI-O over containerd, and crun over runc).
For container management, I choose Podman over Docker, and I prefer Canonical Rockcraft or Red Hat UBI over Wolfi over Alpine. I like Kata Containers and CoCo confidential containers, Cilium/Hubble/Tetragon, Trivy, Notary, and Harbor.
I also utilize OpenStack Barbican, KeyCloak, EJBCA (certificate authority), KubeVirt, Zero Trust Networking & Wireguard (I prefer NetBird for NAT traversal), Nix, Argo, Just & Bazel.
I continuously explore and evaluate various technologies, including:
CISO Assistant,Prowler,VerifyWise,PyTorch/AI& continual multi-agent reinforcement learning,OpenAI Triton,Ray.io,MLflow,FerretDB,Valkey,NebulaGraph,Milvus,Prometheus/Thanos,Grafana,Apache Cassandra,Kafka,Flink,Spark,Airflow,Superset,Hudi,Presto,Velero,Kubewarden,OpenTelemetry,Genode&seL4.
I advocate for accountability in cybersecurity and find Hyperledger Fabric and Chaincode useful for immutable chains of custody in supply chains.