Milton Ch

Senior Software Engineer at Upgrade, Inc.

Bolivia
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

👤
Senior
🎓
Top School
Milton Ch is a Senior Software Engineer from Bolivia with eight years of experience building backend systems for banking, transportation, and e-commerce using Java, Spring, Postgres, Kafka and GraphQL. He has strong security expertise demonstrated by contributions to the Gluu oxAuth project—fixing OpenID Connect/UMA vulnerabilities and implementing CIBA/FAPI-CIBA flows that earned certification—and has delivered device and token flow features for high-assurance auth systems. At Upgrade he helped evolve personal and home improvement credit-line services, and earlier roles span integrations, high-throughput payment platforms and CTO-style product delivery at his startup. Milton combines a practical, research-minded approach with a history of shipping secure, production-grade systems and a knack for surfacing subtle protocol bugs before they reach customers.
code8 years of coding experience
job9 years of employment as a software developer
bookComputer Engineer, Computer Engineer at Universidad Autónoma Gabriel René Moreno
stackoverflow-logo

Stackoverflow

Stats
1reputation
0reached
0answers
0questions
github-logo-circle

Github Skills (8)

security10
javas10
user-authentication10
authentication10
back-end-development10
oauth10
java10
openid-connect10

Programming languages (5)

TypeScriptJavaSCSSJavaScriptHTML

Github contributions (5)

github-logo-circle
GluuFederation/oxAuth

Nov 2019 - Sep 2020

OAuth 2.0 server and client; OpenID Connect Provider (OP) & UMA Authorization Server (AS)
Role in this project:
userBack-end Developer & Security Engineer
Contributions:239 commits, 44 PRs, 139 pushes in 9 months
Contributions summary:Milton focused on implementing and fixing security-related issues by addressing vulnerabilities in the OpenID Connect Provider and UMA Authorization Server. They implemented a fix where the "sub" claim was absent from the id_token and userinfo response when certain attributes were used as source for it. They also introduced testing to verify that the subject identifier is present when the SubjectType is public and worked on token endpoint for CIBA authentication.
openid-clientopenid-connect-clientsso-loginumaoauth2
miltonbo/busqueda-actas

Oct 2019 - Dec 2020

Busqueda de actas en el sistema del TSE - Bolivia
Contributions:7 pushes, 2 branches, 2 issues in 1 year 1 month
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Milton Ch - Senior Software Engineer at Upgrade, Inc.