John Solis
security engineer
San Francisco, CA
PullString, Inc
Security Engineer
April 2015 - Current
Joined a small startup in San Francisco as its first security engineer to help implement security best-practices and improve platform security.
Being in a startup means wearing many hats and, as a software developer, I contribute code to both our client applications (Android) and server platform (Go and AWS). I also help manage our public bug bounty program on HackerOne, and monitor news related to the EU-US Privacy Shield Framework to inform our internal security policies and ensure that our system architectures remain compliant.
Sandia National Laboratories
Principal Member of Technical Staff
Sept 2010 - March 2015
Was one of the primary developers of CodeSeal, a provably secure code obfuscation technology that was under active development for several years. CodeSeal was selected to participate in the DHS Transition To Practice program headed by Mike Pozmantier, which provided me the opportunity to present the technology to several investors, integrators, and information technology companies.
Helsinki University of Technology
Visiting Researcher
May 2009 - Sept 2009
Worked as a visiting researcher with the Helsinki University of Technology (now Aalto University) in the Department of Communications and Networking (COMNET). I worked on a joint research project with Professor Jörg Ott and N. Asokan from Nokia Research Center that investigated fragment authentication techniques for opportunistic networks.
NEC Europe Network Laboratory
Intern
Nov 2008 - March 2009
During my internship with NEC Europe Ltd. Network Laboratories in Heidelberg, Germany, I investigated security primitives for smart-card enabled devices. The first half of my internship involved developing smart-card access for the NEC Identity Brokerage system. The second half focused on implementation of a group signature primitive for JavaCard based smart-cards.
Nokia Research Center
Intern
June 2007 - Nov 2007
This was a six month internship with NRC's Internet Core Technology Center Security Research group in Helsinki, Finland. During this time we investigated securing storage resources of nodes in Mobile Delay-Tolerant Networks. We showed that a small minority of malicious nodes can negatively impact delivery ratios of honest users and propose several techniques for mitigating this damage.
University of California, Irvine
Irvine, CA
September 2010
Doctor of Philosophy, Computer Science
Thesis Topic: Securing Shared Resources in Opportunistic and Delay-Tolerant Networks
Adviser: Professor Gene Tsudik
Area of Study: Computer Security and Applied Cryptography
University of California, Irvine
Irvine, CA
September 2006
Master of Science
Concentration: Systems
University of Texas at Dallas
Richardson, TX
August 2004
Bachelor of Science
Computer Science and Software Engineering
Summa Cum Laude