Technical authority, MULTOS CA
The Certification Authority for the MULTOS smart card system is a critical component of the MULTOS scheme and was developed to ITSEC E6 security evaluation level. I led the elicitation of stakeholder requirements and produced a formal security policy model. This was followed by the formal specification of the system and its design, analysis, development and testing according to the Correctness by Construction approach. The MULTOS CA project achieved outstandingly low defect rates (less than 0.1 per KLOC), satisfaction of all client’s operational needs, and economical development to the highest level of assurance. This project is the subject of an article in IEEE Software.
Team lead, banking security
I have assisted a large retail bank by eliciting and analysing operational and technical requirements for security aspects of an internet banking product.