User:Marc Stern

Marc Stern is Senior Consultant at Approach. He is an expert in Information Systems Security and in Systems and Network Architecture for 20 years, with an impressive personal track record in Public Key Infrastructures and smart card-based systems for eID applications. He is also one of the European leaders in the field of Web application security.

During the last years, Marc Stern worked within the private sector (financial market, manufacturing industries) and within the public sector (Belgian Government, Belgian Social Security, European Institutions, NATO) where he played a major role in shaping the new security landscape: security leader of the STORK project for European eID interoperability, architecture of the Belgian eID card, SIS card, PKI for European Commission, qualified signatures and timestamping for Belgian Notaries, combined payment card for SNCB-NMBS/TEC/De Lijn/STIB-MIVB, digital signature for European Commission, etc.

Marc was also leading the first methodology for Web Application Firewalls rules implementation, and heavily involved in an open source Web Application Firewall project, by providing extensions to ModSecurity and Apache (custom filters, support of real-time X.509 certificate validation via the OCSP protocol, SSL/TLS error trapping, ...).

Marc helped a lot of organisations to enhance the security of their environment, with a major experience with B2B/B2C applications. This kind of missions was performed in various sectors, from manufacturing companies to financial institutions, telecom companies, health sector, and military sector.

Marc is delivering several trainings to organisations around Web Application Security, eID development, PKI & SSL, etc.