Home > Ask the SOA Experts > Meet the experts > Donald Flinn
EMAIL THIS

Ask The SOA Expert: Meet The Experts
Back to Ask the Expert Back to Meet the Experts
Donald Flinn Donald Flinn, Founder and Managing Partner, Flint Security
Donald has over twenty-five years experience that encompasses
  • Enterprise Security
  • Web Services Security in both .NET and Java
  • Co-author of two books on security.
  • Active in numerous technical committees developing security specifications. These include the OASIS Security Assertion Markup Language (SAML), Web Services Security (WS-Security) and the eXtensible Access Control Markup Language (XACML). Also past chair of the OMG Security Special Interest Group and Common Security Interoperability specification.
  • Architecture and Implementation of Distributed Web Services Security Framework
  • Design and development of distributed object computing and enterprise middleware integration using Object Oriented design methodology
  • Experience in application development and product delivery and management.
Professional experience
  • Founder and Managing Partner for Flint Security: Donald develops and presents workshops on Web Services Security. He is the lead consultant for Flint Security on architectural design and implementation design using the latest technology including WS-Security, SAML and XACML from the OASIS consortium.
  • Chief Security Architect for Hitachi Computer Products: Donald was responsible for the Architecture and Design of a family of Enterprise Level, security products. The flagship product, the EASI Unifier, is a complete security framework that uses Enterprise Application Integration (EAI) Principals. The security model was based on but not limited to the OASIS security specifications SAML and WS-Security. It incorporates failover, redundancy, automatic startup and discovery. A unique feature of this product is that it does dynamic, policy driven routing of security between applications, (Web Servers, Application Servers, C++ and Java applications) and third party security products. An additional security product that I designed was a software proxy that secures SOAP messages using WS-Security and SAML. Donald authored of a number of internal technical papers and is the technical representative at OASIS for the security division of Hitachi.
  • Principal Engineer with IONA Technologies. Donald was responsible for the Architecture and design of IONA's security product for the Orbix 2000 CORBA product line and IONA's Java Application Server. The Architecture encompasses end-to-end security from the Perimeter Tier, through the Mid-Tier to the Legacy Tier.
  • Chief Security Designer for Concept Five's CORBA security product development. The product was fully CORBA Level 2 compliant and provided authentication, authorization, auditing, and encryption in a CORBA environment services were developed in C++ and Java using the OMG-specified security replaceability model.
  • As the senior software engineer, Donald was responsible for the design and implementation of Hewlet Packard's Java ORB. He implemented Level 1 CORBA security in the Java ORB.
  • Donald implemented DCE products incorporating the MIT Kerberos security protocol.
Non-Security Related Experience
  • Senior software engineer for Hewlett Packard: Donald designed and led a team of engineers to implement a full software bridge between CORBA and Microsoft's COM.
  • Donald implemented the CORBA Trading Service for Hewlett Packard.
  • Construction Industry: Donald was responsible for a team that designed and implemented a billing and inventory application for construction companies.
  • Financial Industry: Donald designed and implemented a tax program for use by CPA firms. The product covered both Federal and State taxes. It was a multi-user system that had the ability to easily incorporate the yearly change in tax forms.
  • Defense Industry: At Avco, Donald designed and implemented a scientific program to calculate the in-atmosphere environment within the expanding fireball for a nuclear explosion. Part of this work was the development of programs to calculate thermodynamic variables at temperatures in excess of a million degrees Kelvin.
  • Publishing Industry: Donald managed a team of 30 engineers to develop the top of the line publishing system for Compugraphic Inc.
Technical Expertise
Operating Systems: Windows, UNIX
Programming Languages: Java, C++, C, Pascal, Lisp, COBOL

Professional Societies
Member of the OASIS security technical committees; WS-Security, SAML and XACML.
Member of Java Community Process (JCP).
Former Chair of the Object Management Group's Security SIG.
Former Chair of the Object Management Group's Common Secure Interoperability version 2 Specification

Publications
Donald is a co-author of two books on security:
Presentations
  • "End-to-End Distributed Security Overview", DOCSec, Baltimore MD, March 2002.
  • "Distributed Security", InfoSec, NYC, NY, December 2001.
  • "CORBA Security", OMG, Oslo, Norway, June 2000.
  • Numerous Intra-company Presentations at Hitachi, Iona and Hewlett Packard.
Education
PhD Candidate - MIT, Cambridge, MA
MBA - Northeastern Univ., Boston, MA
M.S. - SD School Mines, Rapid City, SD
B.S. - Univ. of Notre Dame, So. Bend, IN
Do you want to help other SOA professionals? Become an expert and answer questions targeted towards a specific category.
 
Become an Expert for this site.
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2001 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts