I have had a long history in both academic and industry research in computer security. I started my career as a professor at Carnegie Mellon University teaching computer security, and was a founding faculty member of Carnegie Mellon’s Cyber Security Center. During that time, I led many cross industry/academia research efforts and spearheaded many research projects including one that led to the “chenxification” code-level obfuscation technique that is still used in high-security DoD projects and to the best of my knowledge, some underground malware kits.
My post academia work included a VP of research position at Forrester Research, where I covered many segments of the security market and published many hard-hitting research papers on security technologies. My advocacy for application security and privacy led to keynotes at SANS developer conference, RSA Asia, and OWASP. During my Forrester stint, I contributed to the specification of the privacy markup language, sat on the RSA conference’s technical review committee, and served on many National Science Foundation research grant review boards.
At RSA 2016, I’ll be running a featured encryption privacy panel with the former Cyber Security advisor for President Obama, Director of Privacy for Homeland Security and noted privacy experts from EPIC. I recently keynoted ACM’s Cloud Security Workshop on the topic of intersection of cloud security and privacy.
At Twistlock, we are advocating that container security should be platform neutral and cloud native. That means portable, interoperable technologies that do not require anchoring to a specific OS, server architecture, or runtime environment. This is the overriding principle that influences our product strategies, roadmap, and also our open source work. Because of this, we are selected as the first security partner for Google Container Engine. We also recently committed authorization framework code to Docker, which allows third party authorization plugins to be integrated with Docker. For those efforts, I work very closely with R&D to craft product and technology roadmap. Our mission is to engineer a platform-neutral layer of security controls that are open, standards-based, and can benefit a large part of the ecosystem. This mission fits extremely well with the CNCF vision.
Prior to Twistlock, I spent two years leading the innovation strategy at Intel security, focusing primarily on deriving unique value from a software-hardware combined strategy. I led the ubiquity research and developed the technical roadmap and specification for embedding identity-based encryption engine in Intel hardware, which led to the integration roadmap for Cloud-to-chip technologies for Intel Security.
The industry is going through a sea change presently when DevOps initiatives are taking hold in organizations large and small. Security must adapt accordingly or risk jeopardizing the pace of innovation. For those reasons, we contend that it is important for the TOC to have a designated representative on security technologies.
Twistlock’s market position – an early mover in container security – and my experience in deep technical work, privacy, as well as big-picture strategy research, allow me to bring unique insights to the technical committee. I believe that I can make significant and valuable contribution to the technical work of CNCF and therefore would like to nominate myself to be a member of the technical committee.
Chenxi Wang, Ph.D.
Chief Strategy Officer, Twistlock