Profile

Cover photo
Kevin W. Wall
Works at Wells Fargo
Attended Marietta College
156 followers|48,089 views
AboutPosts
People
Have him in circles
156 people
Stephen Queen's profile photo
Dennis McNellis's profile photo
Paolo Perego's profile photo
John Melton's profile photo
Thompson Tobin's profile photo
Eric Citaire's profile photo
Mirajul Islam's profile photo
Chris Tidball's profile photo
Emily Chahal's profile photo
Education
  • Marietta College
    BS in physics and mathematics
  • Case Western Reserve University
    MS in Computer Information Science, 1988 - 1991
Story
Tagline
A computer geek and dinosaur, not quite yet extinct...
Introduction
I now work for the Secure Code Review team at Wells Fargo as a Information Security Engineer. Before that I worked at CenturyLink (formerly Qwest) as a Staff Security Engineer under Risk Management / Information Security. During the 10 years prior to this, I worked as the tech lead on an Application Security team in (then) Qwest's IT division.

Before even that, I spent 3+ years as an independent contractor consulting on C++ and Java development, and 17 years at (then) AT&T (now Alcatel-Lucent) Bell Labs where I was a DMTS. (Told you I was a dinosaur! Ask me about piggyback twistor memory someday and how I used it to stay warm in the labs.)

I currently am working on the OWASPI ESAPI for Java project and most of my time is spent on ESAPI's crypto system.  After years of swearing that I'd never program in C++ again, lo and behold, I find myself working working on the new ESAPI for C++ project. I really *must* be a masochist.

Lastly, co-mentoring a student with John Melton for the Google Summer of Code 2012. The student's GSoC project is to develop a SOAP web service to interface with the OWASP AppSensor engine.
Bragging rights
Survived C/C++ without fatally stabbing myself with pointers. ;-)
Work
Occupation
Application / information security
Skills
Java, application security, applied cryptography, *nix system administration security, ksh / bash programming
Employment
  • Wells Fargo
    Information Security Engineer 5, 2013 - present
  • CenturyLink (f/k/a Qwest Communications)
    Staff Security Engineer, 1999 - 2013
  • Light Source Software Labs
    Founder / Principal Consultant, 1996 - 2000
  • Bell Labs
    DMTS, 1994 - 1996
  • Bell Labs
    MTS, 1984 - 1994
Basic Information
Gender
Male
Relationship
Married

Stream

Kevin W. Wall

Shared publicly  - 
 
A drug bust that's actually a drug bust ...
The massive haul of meth was hidden in thousands of imported silicon bra inserts, and art supplies.
1
Add a comment...

Kevin W. Wall

Shared publicly  - 
 
This shows why crypto backdoors will backfire.
Suspicious code found in Juniper's firewall software underscores why governments shouldn't be allowed to install their own backdoors in software.
1
Kevin W. Wall's profile photo
 
And for those of you with a more technical bent, Adam Langley wrote up an excellent summary of the discussion occurring on Twitter the other day:
https://www.imperialviolet.org/2015/12/19/juniper.html
Add a comment...

Kevin W. Wall

Shared publicly  - 
 
Follow me on Twitter

I've decided that I need practice in brevity since I'm mostly known for my TL;DR posts on mailing lists.

So come follow me on Twitter @KevinWWall and give me some pointers and tell me how I'm doing, but at least you won't have to listen to me ramble for more than 144 characters. But just don't follow me on the streets...because that would be stalking.
1
Add a comment...
 
Thursday I spoke at the Columbus OWASP meeting on the topic "Analyzing (Java) Source Code for Cryptographic Weaknesses". Yesterday I just loaded the slide deck to the OWASP Education / Free Training link at https://www.owasp.org/index.php/Education/Free_Training
The ODP format includes detailed speaker's notes. Feedback appreciated. Enjoy.
3
1
Add a comment...

Kevin W. Wall

Shared publicly  - 
 
Yesterday was the 100th anniversary of Einstein's theory of general relativity.
This slideshow exhibit briefly shows the progression of the theory of general relativity from Einstein's initial three publications in November 1915 through proofs offered by Karl Schwarzchild, David Hilbert, Arthur Eddingtion, and others; to the revival of interest in general relativity after ...
1
Add a comment...

Kevin W. Wall

Shared publicly  - 
 
I just got an email from Twitter for the first time in a long time (thank you Twitter for not spamming me!). Based on that and it's coinciding with beggar's night, I've decided that next Halloween, I should dress up as a giant Twitter logo to pass out candy and announce my presence with "Treat or tweet". (Sorry; had to go there. Not my fault! :)
1
Add a comment...

Kevin W. Wall

Shared publicly  - 
 
Strategic Placement
Admittedly, this picture is hard to see, but if you look closely you'll see probably at least 100 tiny insects caught in this spider web. I just checked and the spider seems to have abandoned this web. That's probably because after eating all these insects he was probably the size of a baseball and found it hard to hide in the light fixture.
1
Add a comment...
Have him in circles
156 people
Stephen Queen's profile photo
Dennis McNellis's profile photo
Paolo Perego's profile photo
John Melton's profile photo
Thompson Tobin's profile photo
Eric Citaire's profile photo
Mirajul Islam's profile photo
Chris Tidball's profile photo
Emily Chahal's profile photo

Kevin W. Wall

Shared publicly  - 
 
How cool is this? Draw math equations and have it produce LaTeX?
1
Add a comment...

Kevin W. Wall

Shared publicly  - 
 
Sigh. Apparently, Texas hasn't learned anything from it's last incident with 14 year old Muslim teen Ahmed Mohamed (even if that did turn out to be a hoax). Attorneys there were asking for $15M, so I'm betting this one will be at least 3 times that. Way to go Texas!
Dallas cops put Armaan Singh Sarai in jail for three days because someone mistook the solar panel on his phone-charging backpack for a bomb.
1
Add a comment...

Kevin W. Wall

Shared publicly  - 
 
Thursday I spoke at the Columbus OWASP meeting on the topic "Analyzing (Java) Source Code for Cryptographic Weaknesses". Yesterday I just loaded the slide deck to the OWASP Education / Free Training link at https://www.owasp.org/index.php/Education/Free_Training
The ODP format includes detailed speaker's notes. Enjoy.
1
Add a comment...

Kevin W. Wall

Shared publicly  - 
 
If you work at all in the Java development world, you are going to want to read this ASAP and devise a strategy to deal with it:
By @breenmachine What? The most underrated, underhyped vulnerability of 2015 has recently come to my attention, and I'm about to bring it to yours. No one gave it a fancy name, there were no press ...
1
Add a comment...

Kevin W. Wall

Shared publicly  - 
 
RIP Yogi

I've never been a really Yankee's fan, but I sure will miss the affable Yogi Berra. Not only was he one of the best at his position, but he was full of wit, charm, and unassuming. We'll miss you, Yogi.
Yogi Berra, who died Tuesday night at 90, wasn't just a Hall of Fame catcher for the Yankees; he lived a quintessentially American life on and off the field.
1
Add a comment...