Senior Java Developer (Backend, Spring, PKI, Smartcards, Cryptography) verfügbar

Senior Java Developer (Backend, Spring, PKI, Smartcards, Cryptography)

verfügbar
Profilbild von Anonymes Profil, Senior Java Developer (Backend, Spring, PKI, Smartcards, Cryptography)
  • 80469 München Freelancer in
  • Abschluss: Dipl.-Inform., Dipl.-Ing. (FH)
  • Stunden-/Tagessatz: nicht angegeben
  • Sprachkenntnisse: deutsch (Muttersprache) | englisch (verhandlungssicher)
  • Letztes Update: 24.01.2020
SCHLAGWORTE
SKILLS
Architecture & Design
  • UML 2.0 (Enterprise Architect 12.1)
  • Microsoft Word, Microsoft Viso, Mirosoft Powerpoint
  • Altova XMLSpy, ERMaster
Programming Language
  • Java 1.4/1.5/1.6/1.7/8/10, J2EE/JEE, OpenJDK 7/8
  • C#/.NET Framework 2/4, C/C++ Windows/UNIX
  • JavaScript, UNIX/Linux shell scripts, Windows batch scripts
Operating System, Hypervisor
  • Windows 7/XP/NT/10, Windows Server 2008/2012/2016
  • Ubuntu 12/16.04.2 LTS Server AMD 64-bit, Linux 2.6, UNIX
  • IBM AIX 6.1/5.2L/4.3, Red Hat Linux, Red Hat Fedora Core 3/4/5/8, SuSE Linux
  • Hyper-V, VirtualBox, VMware, KVM
  • Linux Docker, Dockerfile, Docker Desktop for Windows
IDE
  • Eclipse 3.2/3.3/3.7/4.6.1/2018-09, MyEclipse 6.5 (Matisse 4), Netbeans
  • IntelliJ IDEA 13.0/2018/2019
  • Microsoft Visual Studio 2005/2008/2010/2012
  • Rational Rose
Version Control, Builder, Test
  • Apache Subversion, VisualSVN Server, TortoiseSVN, AnkhSVN
  • IBM Rational Clear Case, IBM Rational Clear Quest, CVS
  • Team Explorer Everywhere V14.114 (Team Foundation Server)
  • Mercurial 4.0, TortoiseHg 4.0, Git 2.17, GitLab
  • Apache Maven 2.0/2.2/3.0/3.3.9, Luntbuild, Jenkins, Liquibase
  • Apache Ant 1.7/1.9.7
  • EclEmma, SonarQube, EasyMock, Mockito, JMock, TestNG, Hamcrest
  • JUnit 4.1/4.12, NUnit (C#)
  • shell scripts, make files
Database
  • MariaDB 10.2.11, Galera Cluster
  • Microsoft SQL Server
  • Oracle SQL Developer 4.1, HeidiSQL 9.4.0
  • Sun Microsystems MySQL Server 5.1
  • Oracle 9.e/10g/11g R2, IBM DB2
  • PostgreSQL 11, H2
  • Hibernate 3.4/5.2.17 Final/5.3.2 Final, Hibernate Envers
  • JPA 2.1/2.2, JDBC 3/4
  • JTDS 1.2/1.3.1, c3p0 0.9.5.2
  • ODBC, Microsoft Access
  • MongoDB, Spring Data MongoDB, NoSQLBooster for MongoDB
GUI
  • Windows Forms (MVC Pattern)
  • Java Swing
Web-GUI
  • Apache Struts 2.1.6 Framework (Front Controller)
  • Java Server Pages (JSP), HTML
  • Java Applet, Apache Tapestry
  • BASICS: Node.js 11.9, npm 6.5, Angular(ng) 7.3.0, TypeScript 3.2, CSS
Web-Services
  • SOAP 1.1, HTTP, WSDL, WS-I Basic Profile V1.1, WS-Policy V1.1
  • Glassfish WSIT (JAX-WS RI 2.1, XWSS 3.0)
  • Codehaus XFire Java Webservice, RestTemplate
  • Apache WSS4J, Sun XWS-Security
  • RESTful, JAX-RS (Jersey clients)
  • Swagger, swagger-ui, springfox 2.8
Application Server
  • WildFly 11.0.0, JBoss EAP 6.4, IBM WebSphere AS 9
  • Java Servlet 2.5/3.1.0, EJB 3.2, JMS API 2.0
  • Apache Tomcat 6.0 (Windows Service 32/64-bit)/7.0/8.5
  • Oracle Weblogic Server 11g (Cluster)
  • Red Hat JBoss 4.2/AS 7
  • Sun Application Server 8.2, Apache Geronimo (OpenEJB)
  • Apache HTTP server 2.4, CGI, Perl
  • Spring Boot V2.1.0 (embedded Tomcat)
Library, Framework
  • Spring V5.1.2 (Core, WebMVC, Test, Aspects), Spring Data JPA V2.1.2, Spring Framework 2.5.6
  • Spring DI/AOP/JDBC/Transaction/Batch, Spring Security
  • Spring Remoting/Integration/Messaging/MQTT/WebSockets, Spring REST, Spring Kafka
  • IOPLEX Jespa für SSO, JCIFS 1.3, JAAS (NT Login Module)
  • JSON Web Token Authorization (jjwt 0.9), Jackson 2.9, Gson 2.8.5
  • JAXB RI 2.1 (XML Schemata), JAXB/XJB 2.2.10, JDOM, JAXP, JMX, JNI
  • JAX-WS 2.2.10
  • MessagePack 0.8.16
  • Quartz Scheduler 2.2.1
  • Logback 1.2.3, Apache Log4J 1.2.15, Apache Commons, Sun Java Concurrency Utilities
  • JCE/JCA, IAIK-PKCS11, IAIK-JCE, IAIK-ECC, IAIK-XSECT, IAIK-PKCS#11 Wrapper, IAIK-PKCS#11 Provider, JSSE
  • Bouncy Castle JCE/Crypto API, Bouncy Castle Mail, PDFBox
  • Apache XMLSec (XML-Enc, XML-DSig)
  • AspectJ (AOP), JProfiler
  • OpenJMS, OpenLDAP
  • ApacheFTP, EdtFTPj, Snacc4j
  • PPI Banking Kernel Multiuser V2.2 (HBCI)
  • XPath, SAX, DOM, XSLT
  • ASN.1 Compiler für C (asn1c)
  • BinaryNotes ASN.1 Framework (Java/C#)
  • P/Invoke (C#)
  • ActiveMQ (JMS), Apache Camel
  • Zookeeper 2.0, Apache Kafka 2.11, Kafka Manager, Trifecta-UI 0.22
  • Eclipse Paho MQTT Client, HiveMQ MQTT Client, Mosquitto MQTT Broker
  • Glassfish Tyrus (WebSockets), IBM JMS Provider
  • TcpTrace, TunnelliJ, MQTT.fx
Hardware Security Module (HSM)
  • Thales nShield 500 F2/F3, Thales nShield Connect (12.10)
  • Utimaco CryptoServer Se50 PCIe/Simulator
  • IBM Cryptographic Coprocessor 4758 Model 002
  • SafeNet Luna, PKCS#11
Smartcard
  • G&D Smart Café Expert 5.0, G&D StarSign Management Suite V1.6,
  • G&D Customizer, G&D JLoad, G&D OffCard API 1.3, GemXplore 98 CASE
  • Sun smartcardio, CT-API, PC/SC, Open Card Framework (OCF)
  • Java Applet, RMI, A.E.T PKI Java Applet, Precise Biometrics
  • ePassport, eID, eSign, SIM, eGK0/1, ZKA Chipkarte (Geldkarte, HBCI), JavaCard, GlobalPlatform, Personalization
Miscellaneous
  • ASN.1, XML, JSON, SSL/TLS, OCSP
  • Axiomatics Policy Server ABAC/XACML
  • PrimeKey EJBCA CE 6.5.0.5, EJBCA EE 6.5.2
  • PrimeKey PKI Appliance 2.3/2.7
  • Forward Proxy (Squid), Load Balancer/Reverse Proxy (NGINX)
  • Wireshark, JIRA, Twiki, Clean Code
  • Atlassian JIRA 7.1, Atlassian Confluence 5.10
PROJEKTHISTORIE
01/2019 – ongoing
Service contract with Teamware GmbH, Munich

Webservice-Mapper
Role: Java Developer
Required is a proper communication infrastructure which supports data exchange and push notifications between mobile apps and backend services, i.e. gateway and routing functionality.
Backend services shall be easily added à la plug-and-play.
Furthermore, the mobile apps and the backend services have to managed, i.e. registration, activation/deactivation, and removal.
That management will be done by administrators via a web-based Angular UI which communicates via a RESTful interface with the upcoming "Device Manager" component.
These administrators get role-based access to Device Manager's functionality, which have to be managed too.
The plug-and-play of the backend services will be supported by Apache Kafka as message broker.

Tasks
  • Design and Implementation of the Device Manager as Spring Boot application with embedded Tomcat for the REST interface and a PostgreSQL database.
  • The Device Manager realizes the bi-directional asynchronous gateway with routing functionality and implements the management for mobile apps, backend services as well as for administrators available via secured REST.
  • Additionally, a Java library "Mapper Broker" has to be designed and implemented which supports the plug-and-play of backend services and the exchange of management, data, and push notifications.
  • Finally, an Attribute Based Access Control (ABAC/XACML) has been integrated.
Keywords
  • Kanban, Java JDK 8, IntelliJ IDEA 2018, Eclipse JEE 2018-12-R
  • Git for Windows 2.20, GitLab Community Edition 11.7, Apache Maven 3.6, Jenkins 2.150, SonarQube
  • SQL Developer, H2, Oracle, PostgreSQL, JDBC
  • JUnit 4.12, Hamcrest, Mockito
  • Spring Boot 2.0.6, embedded Tomcat, logback
  • Spring MVC 5.0, Spring Data JPA, Spring Security 5.0
  • Spring RESTful services, JSON Web Token Authorization (jjwt 0.9), Jackson 2.9
  • Hibernate 5.2, Hibernate Envers
  • Zookeeper 2.0, Apache Kafka 2.11, Kafka Manager, Trifecta-UI 0.22, spring-kafka, spring-kafka-test
  • swagger, swagger-ui, springfox 2.8
  • Atlassian JIRA 7.1, Atlassian Confluence 5.10
  • Axiomatics Policy Server ABAC/XACML

09/2016 – 10/2018
Contract for work with an IT company in Munich (Public Sector - National ID Systems)

VD EAC-CM V2, VD COS-EACCM
Role: Full stack Java Developer
  • Re-design, refactoring and updates of the existing Java software “VD EAC-CM” (EAC-PKI) with web-services and web-GUI, compliant to BSI TR-03110 V1.11/V2.0 and BSI TR-03129. Implementation of new feature like access control, user management, TLS based C/S authentication, syslog, encrypted credentials, and scheduler.
  • Creation of a virtual machine “VD COS-EACCM” (Linux) containing the Java software “VD EAC-CM V2” and its integration into the “ePass/eID PKI Appliance”.
Keywords: Java 8, Web-services, Web-GUI, Tomcat, JPA, MariaDB, Maven, TLS, Utimaco CryptoServer, Windows, Ubuntu, PKI Appliance, OpenJDK 8

Governmental eID PKIs with Identity Service
Role: PKI Expert
  • Governmental PKI design and system architecture for the management (issuance, post-issuance, status changes) of national ID cards with authentication certificates. Furthermore, it issues also service provider certificates and provides an identity web service for the identification of citizens for authorized provider systems. Setup of two fail-over clusters spread over two sites for disaster recovery. Installation, tests, and trainings on-site.
    End customer is a country in Northwest Africa.
  • Governmental PKI for citizen eID cards. Issuing CA Cluster with PKI Appliance: Transformation of a 2-node fail-over cluster into a 3-node high availability cluster with additional SW updates of all nodes.
    End customer is a country in Northwest Africa.
  • Specification and implementation of a governmental mDL/TLS PKI supporting mobile driver licenses and governmental portals. One offline Root CA, two internal online issuing sub CAs, two external available OCSP responders.
    End customer is country in south-eastern Europe.
  • Specification and implementation of an ePassport PKI, compliant to ICAO Doc9303-12, 7th Edition 2015.
    End customer is country in south-eastern Europe.
Keywords: PKI Appliance, EJBCA, Java 8, WildFly, JBoss, MariaDB, MS SQL Server, Windows Server 2016 VM, Thales nShield Connect, Utimaco CryptoServer

Identity Service, PACE Library
Role: Java Developer
  • Implementation of an “Identity Web Service” (Java) and its integration as virtual machine “VD COS-IDENTITY” (Linux) into a PKI Appliance.
    End customer is a country in Northwest Africa.
  • Design and implementation of a PACE Java library which supports a secure access to local or remote ID cards.
    End customer is small country in East Asia.
Keywords: Java 7, JBoss, Ubuntu, Oracle Database, BouncyCastle, TFS

National eID Systems
Role: System Architect, PKI Expert
  • Participation in the design of a system architecture for a national ID card based on JavaCard with PKI based authentication and signature, One-Time-Password (OTP), and match-on-card fingerprint.
    End customer an island state in South Asia.
  • System and software architecture for a governmental ID card system supporting application, issuance, renewal, and revocation of ID cards as well as its usage for online authentication, online signing and decryption even with smartphones.
    End customer is a country in West Scandinavia.
  • System design for the production and issuance of ePassports.
    End customer is a country in West Asia.
  • Requirements to and architecture of a national system for identification, authentication, and signature (IAS) based on European regulations (eIDAS), implementing acts, STORK, eIDAS Token and further standards (ETSI).
Keywords: eIDAS, IAS, STORK, eID, CAMS

02/2013 – 07/2014
Service contract with Wirecard Technologies GmbH, Munich

Consumer Cards Platform
Role: Full stack Java Developer
Java/JEE developments for a multi-tenant (brands) and high-availability credit card platform for physical, mobile and virtual credit-cards. The platform provides web interfaces for users and call-centers as well as RESTful web-services for mobile apps. The platform manages users, accounts, and credit-cards and performs associated transactions internally and via interfaces to banks, credit-card processors, and mobile network providers.
Keywords: Scrum, Kanban, Java, WebLogic, Oracle Database, Spring

09/2006 – 01/2013
Service contract with an IT company in Munich (Public Sector -Government Solutions)

Nationales eID System
Role: Consultant, Architect, Developer
Definition of the requirements, business and system use cases for a national eID system. System and software architecture, concepts, and functional specification. Test web portal for anonymous online authentication and online identification based on TLS certificates as well as email signatures and email encryption. Reference PKIs for X.509 and CVC certificates.
Keywords: IAS, PKI, ETSI, eID

EAC Certificate Manager
Role: Java Developer, Consultant, Software Architect
Design and development of a Java based Card-Verifiable Certificate (CVC) management software (several versions) which realizes all entities of an EAC PKI with CVCA, DVCA, and IS for ePassports, eID cards, signature cards, and ISO driving license.
End customers are countries in East Asia, South-Eastern Europe, and Southern Africa.
Keywords: BSI, ICAO, web-services, TCC, EAC, Java, C#/.NET

CAMS JavaCardCAMS eGK – PIP
Role: Java Developer, Software Architect, SmartCard Expert
  • Card and Application Management System (CAMS) which realizes the life cycle management of JavaCards with their applications for production and via the Internet in the field
  • Online frontend for Post-Issuance Personalization (PIP) of Card and Application Management Systems (CAMS) for the eGK (electronic health card) of health insurance companies.
    End customers are German health insurance funds.
Keywords: Java/JEE, JavaScript, UML, XML Spy, Clear Case, Clear Quest, Maven, Luntbuild, AIX, Oracle, JDBC, Thales nShield, SafeNet Luna, eGK, JBoss, Tomcat, Spring Framework, Java Swing, JUnit, ASN.1, JDOM, JAXP, JAXB, Ant, AspectJ, XFire, SOAP, WSDL, WSS4J, XML-Enc, XML-DSig, XWSS, JCE/JCA, IAIK-JCE, JMX, SSL, JProfiler, OCSP, JavaCard

ePA Internet-Pilot, European Citizen Card Demonstrator
Role: Project management, System and Software Architect, Developer
Distributed platform to support electronic personal ID card for eGovernment and eBusiness Use Cases.

Keywords: Java, JavaScript, HTML, Maven, Clear Case, MySQL, Oracle, WebLogic, JBoss, Tomcat, Spring Framework, Swing, Java Applet, Junit, WSDL, SOAP1.1, JDBC, JCE/JCA, BouncyCastle

06/2004 – 08/2006
Employed at tecways AG, Munich

Provisioning Mediation
Role: Senior Software Developer
AUC SIM Provisioning System / Provisioning Mediation for Telcos in Malaysia and India.
  • Management of prepaid and postpaid subscribers
  • Software evaluation (Java), integration of software components, acceptance tests
Keywords: Java, EJB, Fedora Core, JBoss, MySQL, log4j, JacORB

Mobile Banking & Commerce Systems
Role: Development Manager, System and Software Architect
Mobile Banking & Commerce Systems for financial services in India.
  • New development of Mobile Banking System and extension for eCommerce
  • Development Manager, Recruitment of Indian Java developers, definition of development environment
  • System and Software Architecture (J2EE) inclusive Secure Transaction Platform and the Secure Mobile Banking Protocol
  • Specifications of solutions for payment- and banking connectors in India
Keywords: Java/J2EE, JMS, JNDI, EJB, Linux, Windows XP, MySQL, LDAP, Ant, Subversion, UML 2.0, Apache HTTP Server, Apache Geronimo

Usage Data Collection / Billing Mediation Systems
Role: Project Management, Software Developer
Usage Data Collection / Billing Mediation Systems for GSM-Networks
  • System Analysis of existing systems, particularly control flow and data streams
  • Redesign of workflows, control flows and configuration
  • Software architecture (Java) based on existing core system
  • Specification of internal data structures and interfaces
  • Further development of new functional modules for the Mediation System Platform (Java)
  • Specification and development of external system interfaces (Java)
Keywords: Java 5, Junit, log4j, JMock, JProbe, ASN.1, UML, Linux, Subversion, Ant, FTP, Tomcat, CVS, eXtreme Programming

07/1998 – 05/2004
Employed at Chipcard & Communication Systems GmbH, Munich

Mobile Banking Systems / S-Transaction Broker
Role: Subproject Manager, System Architect, Software Developer
  • Acquisition of customer requirements
  • System and software architect (GSM-Network – Gateway – Provider Systems – Bank-computer)
  • Creation of functional specification, security architecture, process descriptions
  • Development of software components (Java, C++)
  • Specification of the Secure Mobile Banking Protocol (SMBP)
Keywords: C++, Java/J2EE, EJB, HBCI, SIM, ODBC, MySQL, WML/WAP, SMS, cryptlib, CORBA, JBoss, RMI, JCE, JMS, XML, XPath, UML, IBM AIX, IBM DB2, IBM HSM 4758, Java Swing, JNI, CT-API

VAS-Container
Role: Senior Developer
Extensions of the money card ZKA-Chipkarte (Geldkarte). Specification of the Value Added Services (VAS) container with corresponding smartcard operations.

03/1990 – 10/1997
Employed at Siemens Nixdorf Informationssysteme AG, Munich
Role: System Software Developer
  • SNMP based system and application management of BS2000 (mainframe) systems
  • GUI developments and performance analyses for the User Management Facility (Front End of BS2000)
  • Communication system TRANSDATA PDN with ISO protocol stack deployed as mainframe front end or network node
Keywords: C, SINIX (UNIX), BS2000, POSIX, SNMP, MIB, Collage, Motif (X Window System), make files, shell scripts

02/1987 – 02/1990
Service contract with WESTCOMP SYSTEMS, Gilching

Role: Hardware and Software Developer
Development of hardware and software solutions for MS-DOS and XENIX platforms

Keywords: C, XENIX (UNIX), MS-DOS, SMT, CAE, Informix, Embedded SQL
ZEITLICHE UND RÄUMLICHE VERFÜGBARKEIT
Ich suche ausschließlich Projekte im Raum München.
KONTAKTANFRAGE VERSENDEN

Nachricht:

Absenderdaten: