Michel Kinasz · Ottawa, Canada · Security-cleared · Schedule a consultation · Read my latest analysis
AI Security Architecture
Securing AI-integrated systems in regulated environments — threat modeling for LLM pipelines, adversarial resilience, and compliance-aligned deployment. Combining deep cryptographic expertise with practical AI security engineering.
Cryptography & Post-Quantum
FIPS 140-3 validation, Common Criteria certification support, and post-quantum migration planning. Hands-on architect of white-box cryptography, HSM integrations, and OpenSSL/MbedTLS implementations across payment and embedded platforms.
Payments & Embedded Security
PCI-MPoC certified payment architectures, CBDC mobile endpoint security (Bank of Canada), and embedded OS hardening for network infrastructure. EMV, FIDO, PKI, and secure boot — architecting compliant systems from silicon to certification.
Selected Engagements
Ciena — Hardened router OS security (ASLR, FIPS 140-3, OpenSSL 3.5 migration, Common Criteria readiness)
Bank of Canada — Architected mobile endpoint security for the CBDC initiative; threat modeling and risk analysis for digital currency infrastructure
Amadis — Designed and certified PCI-MPoC mobile payment acceptance platform; built threat detection SDK
Irdeto — Linux kernel security module for IoT threat defense; DRM secure element architecture
Earlier career — National biometric ID systems (Sagem Morpho), smart card cryptographic middleware (Gemalto, ActivCard), ePassport systems