Profiles search
Yoong-Goog Cho
Sr. Advanced Cybersecurity Architect at Honeywell
Atlanta, GA, United States
Details
Education:
Doctor of Philosophy
Department of Electrical and Computer Engineering
Colorado State University
Master's degree
Electrical and Computer Engineering
Colorado State University
Department of Electrical and Computer Engineering
Colorado State University
Master's degree
Electrical and Computer Engineering
Colorado State University
Experience:
Products under development :
Commercial Security Products including Physical Access Control Systems, IP-Networked Surveillance Cameras, Networked Video Recorders, and Video Management Systems
Secure product development
• Provide development team with secure architecture guidance
• Provide solutions to security features and requirements
• Lead the cybersecurity certification process : ANSSI, FIPS 140-3
• Guide the development team through SDLC with the aim of achieving an on-time release with minimal residual risks
• Interact and work with ODM/External resources on projects
• Propose Security Design Patterns :
Machine-to-Machine Mutual Authentication for Legacy Embedded Devices
Cryptographic Operations and Workflow for Secure Firmware Update
Risk Management of the Developing Products
• Assist the development team in risk management process
• Lead in the technical response to PSIRT through reviewing the vulnerabilities and recommending solutions
Training
• Educate teams including development, offering management, pre-sales team in the security process and latest threats to the developing products
• Keep up to date with trends, regulations, threats, etc. within the building technology industry
• Presented Topics - Cryptography, TLS1.2, X,509v3 Certificate, OAuth2.0
2019 : Present
Honeywell
Sr. Advanced Cybersecurity Architect
Secure embedded systems development for Industrial Control System (ICS)
• Led a POC project under the contract with Naval Surface Warfare Center (NSWC)
• Implemented message authentication algorithms over industrial communication protocols (Modbus TCP/IP) using OpenSSL library
• Developed penetration testing tools (Replay attack and MitM attack) using Python and Scapy
• Developed machine control system simulator on Linux VM
• Investigated security features of microprocessors, MCUs, and security chips
Secure solution development for ICS
• Designed secure JTAG architecture
• Developed cryptographic key management system for ICS including architect and protocols for secure firmware update and secure communication
• Developed tools for testing and diagnosing ICS network issues
• Investigated Intrusion Detection Systems and practiced software tools
• Developed information modeling of engine controllers that comply with OPC-UA
• Assessed cybersecurity features of the ICS embedded systems
• Investigated the cybersecurity requirements of military/industry customers
2017 : 2019
Woodward, Inc.
Embedded System Software/Secure Embedded System Design Engineer
Enterprise x86 Lab
Linux Embedded System Software Development
• Developed Linux embedded system software for HPE’s x86 and Itanium-based Mission Critical Servers
o Responsibilities included investigation (specification, protocols, market/technical requirements, triage), firmware design (interfaces and architecture), implementation/updates, functional unit tests and evaluating system performance
o Co-lead the development of management firmware (automated system error analysis engine) and firmware that maintains health database and provides user interface
o Clarified the complicated system configuration and its changes with introduced new processors to deliver the updated firmware for various MCS products (Superdome2, SuperdomeX, and CS900) to the market on time with high quality
o Made more than 150 defect fixes and completed more than 70 user stories with efforts of investigation and triage
2011 : 2017
Hewlett Packard Enterprise
Firmware Specialist
Embedded System Software Development
• Developed secure firmware for physical access controller and 13.56 MHz RFID readers for Physical Access Control Systems (PACS) which are compatible with ISO/IEC 14443A&B including MIFARE SAM AV1 (NXP) operating with DESFire EV1/MIFARE card
• Developed firmware for interfacing door control modules over CAN/CANOpen stack
• Developed bootloader and Windows program for PIC18F8722 family MCUs running through serial communication channel over raw IR port
Windows Program Development
• Developed Windows programs implementing various cryptographic algorithms and protocols
• Developed GUI and DLL for programming smart cards (DESFire EV1/MIFARE)
2007 : 2011
HID Global
Senior Design Engineer
Commercial Security Products including Physical Access Control Systems, IP-Networked Surveillance Cameras, Networked Video Recorders, and Video Management Systems
Secure product development
• Provide development team with secure architecture guidance
• Provide solutions to security features and requirements
• Lead the cybersecurity certification process : ANSSI, FIPS 140-3
• Guide the development team through SDLC with the aim of achieving an on-time release with minimal residual risks
• Interact and work with ODM/External resources on projects
• Propose Security Design Patterns :
Machine-to-Machine Mutual Authentication for Legacy Embedded Devices
Cryptographic Operations and Workflow for Secure Firmware Update
Risk Management of the Developing Products
• Assist the development team in risk management process
• Lead in the technical response to PSIRT through reviewing the vulnerabilities and recommending solutions
Training
• Educate teams including development, offering management, pre-sales team in the security process and latest threats to the developing products
• Keep up to date with trends, regulations, threats, etc. within the building technology industry
• Presented Topics - Cryptography, TLS1.2, X,509v3 Certificate, OAuth2.0
2019 : Present
Honeywell
Sr. Advanced Cybersecurity Architect
Secure embedded systems development for Industrial Control System (ICS)
• Led a POC project under the contract with Naval Surface Warfare Center (NSWC)
• Implemented message authentication algorithms over industrial communication protocols (Modbus TCP/IP) using OpenSSL library
• Developed penetration testing tools (Replay attack and MitM attack) using Python and Scapy
• Developed machine control system simulator on Linux VM
• Investigated security features of microprocessors, MCUs, and security chips
Secure solution development for ICS
• Designed secure JTAG architecture
• Developed cryptographic key management system for ICS including architect and protocols for secure firmware update and secure communication
• Developed tools for testing and diagnosing ICS network issues
• Investigated Intrusion Detection Systems and practiced software tools
• Developed information modeling of engine controllers that comply with OPC-UA
• Assessed cybersecurity features of the ICS embedded systems
• Investigated the cybersecurity requirements of military/industry customers
2017 : 2019
Woodward, Inc.
Embedded System Software/Secure Embedded System Design Engineer
Enterprise x86 Lab
Linux Embedded System Software Development
• Developed Linux embedded system software for HPE’s x86 and Itanium-based Mission Critical Servers
o Responsibilities included investigation (specification, protocols, market/technical requirements, triage), firmware design (interfaces and architecture), implementation/updates, functional unit tests and evaluating system performance
o Co-lead the development of management firmware (automated system error analysis engine) and firmware that maintains health database and provides user interface
o Clarified the complicated system configuration and its changes with introduced new processors to deliver the updated firmware for various MCS products (Superdome2, SuperdomeX, and CS900) to the market on time with high quality
o Made more than 150 defect fixes and completed more than 70 user stories with efforts of investigation and triage
2011 : 2017
Hewlett Packard Enterprise
Firmware Specialist
Embedded System Software Development
• Developed secure firmware for physical access controller and 13.56 MHz RFID readers for Physical Access Control Systems (PACS) which are compatible with ISO/IEC 14443A&B including MIFARE SAM AV1 (NXP) operating with DESFire EV1/MIFARE card
• Developed firmware for interfacing door control modules over CAN/CANOpen stack
• Developed bootloader and Windows program for PIC18F8722 family MCUs running through serial communication channel over raw IR port
Windows Program Development
• Developed Windows programs implementing various cryptographic algorithms and protocols
• Developed GUI and DLL for programming smart cards (DESFire EV1/MIFARE)
2007 : 2011
HID Global
Senior Design Engineer
Company:
Honeywell
Years of Experience:
17
About
• Proficient in the Secure Software Development Lifecycle (SDLC), with a comprehensive understanding of its principles and practices.
• Adept in the technical domains of product security and network security, with a proven track record of successfully implementing robust security measures.
• Possess a deep knowledge of cryptographic algorithms, network security protocols, and standards such as RFC and NIST, as well as a thorough understanding of network protocols over TCP/IP.
• Experienced in Industrial Automation and Control Systems, with expertise in various industrial network protocols, enabling the implementation of secure and reliable solutions.
• Extensive experience in designing and developing secure embedded system software architecture and network communication protocols, while also adept at implementing and integrating cryptographic solutions.
• Demonstrated proficiency in embedded system software development, encompassing real-time software design, meticulous implementation, rigorous testing, and effective debugging techniques.
Profile Photo
