Naresh Charugundla

Naresh Charugundla has built a career at the core of one of the most consequential but often invisible layers of modern computing: cryptographic trust infrastructure. With more than 18 years of professional experience in software engineering, his work has centered on applied cryptography, particularly in the domains of Public Key Infrastructure (PKI), Certificate Authority systems, and internet-scale trust architecture. Over the course of his career, he has specialized in designing, architecting, and leading distributed cryptographic systems that underpin secure communications, software integrity, and the mechanisms of trust relied upon by cloud platforms and the broader public internet.

At Microsoft, where he serves as a Principal Software Engineer, Charugundla has taken on architectural and technical leadership responsibilities for high-assurance systems that operate at global scale. One of his most significant contributions has been the design and sustained ownership of a high-assurance code signing certificate issuance platform. This platform plays a critical role in establishing software authenticity and determining whether Microsoft software can be trusted to execute across devices and cloud environments worldwide. His work on this system involved designing secure issuance pipelines, implementing strict separation-of-duties controls, and ensuring continuous compliance with audit and trust requirements. In practical terms, these contributions strengthened software supply chain security by reducing the risk of mis-issuance and reinforcing trust guarantees for software used on a global scale.

Another major component of his work has involved certificate revocation and trust validation infrastructure, where he served as a technical lead and architect. In this area, Charugundla designed a globally distributed system supporting trust validation for both TLS and code-signing certificates, with responsibilities spanning the end-to-end publishing pipeline, cross-team coordination, and integration with global content delivery networks. The significance of this work lies in its operational role: enabling browsers, operating systems, and software platforms to make real-time trust decisions based on authoritative validation data. By helping create a system capable of reliably serving tens of billions of validation requests daily, he contributed directly to the reliability and scalability of trust validation infrastructure across the internet ecosystem.

Charugundla has also provided architectural and technical leadership for a public TLS certificate issuance system responsible for issuing certificates used by Azure services and Microsoft products. In this capacity, he has worked on certificate lifecycle design, cryptographic key systems, and compliance alignment with evolving trust standards and regulatory requirements. This platform functions as a foundational trust layer for secure internet communications, and his contributions have supported secure communications for billions of users while ensuring conformance with IETF standards and browser trust expectations. His work demonstrates not only engineering expertise, but also the ability to manage systems where correctness, interoperability, and standards compliance are inseparable from technical success.

A further example of his impact is his role in the design and implementation of an Online Certificate Status Protocol (OCSP) system, a real-time validation platform that determines certificate validity before secure connections are established or software is trusted. This work sits directly on the critical path of secure communications and demands extremely high levels of availability, low latency, and operational resilience. Charugundla helped architect a distributed system capable of processing tens of billions of validation requests daily, while also establishing the monitoring, alerting, and automated recovery mechanisms required to keep such infrastructure continuously available across global environments.

Taken together, these projects show a consistent pattern in Charugundla’s career: ownership of highly complex distributed systems that serve as foundational components of global trust. His work is not simply about writing secure software, but about creating the systems through which trust itself is issued, verified, maintained, and enforced at internet scale. In an era when software supply chain threats, certificate misuse, and digital trust failures can have enormous global consequences, the importance of this work is both technical and societal.

His professional record reflects a rare combination of deep cryptographic specialization, large-scale systems architecture, compliance-oriented engineering, and operational reliability leadership. These are not isolated accomplishments, but interconnected contributions to the infrastructure that allows secure digital communication and authenticated software execution to function at global scale. This makes his profile particularly strong for Fellowship consideration in an institution that recognizes substantial contributions to critical and emerging areas of computing.

For IICSPA Fellowship, Naresh Charugundla stands out as a professional whose career has helped shape the hidden but essential trust fabric of the modern internet. His work in PKI, certificate issuance, revocation systems, and real-time trust validation reflects both the technical excellence and enduring impact expected of a fellowship-level candidate.