Technical Expertise

For geospatial data processing, I love Cloud-Optimized Geospatial Formats and I have found Development Seed's zine to be very educational.

Ubuntu and Debian, Arch Linux, Flatcar Container Linux, I rely on TPM2.0, but I’m interested in OpenTitan and RISC-V Silicon Root of Trust chips, I’m excited about the CHERI Alliance for confidential computing secure enclaves, SQL and Postgres, Kubernetes (I prefer k0s over kubeadm, Metal3 over Tinkerbell (Cluster API), CRI-O over containerd, and crun over runc).

For container management, I choose Podman over Docker, Wolfi over Alpine, though I am open to Canonical Rockcraft and Red Hat UBI. I like Unikraft, Kata, and CoCo confidential containers, Cilium/Hubble/Tetragon, Trivy, Notary, and Harbor.

I like OpenBao for secrets management (PKCS#11 support), Zitadel for identity & access management, EJBCA certificate authority, KubeVirt, Zero Trust Networking & Wireguard (I prefer NetBird for NAT traversal), Nix, Argo, Just & Bazel.

I continuously explore and evaluate various technologies, including:

• CISO Assistant, Prowler, VerifyWise, PyTorch/AI & continual multi-agent reinforcement learning, OpenAI Triton, Ray.io, MLflow, FerretDB, Valkey, NebulaGraph, Milvus, Prometheus/Thanos, Grafana, Apache Cassandra, Kafka, Flink, Spark, Airflow, Superset, Hudi, Presto, Velero, Kubewarden, OpenTelemetry, Genode, seL4, and the Lean programming language (Axiom Math is doing cool things with AXLE)

I advocate for accountability in cybersecurity and find Hyperledger Fabric and Chaincode useful for immutable chains of custody in supply chains.