Matthew Daniel Green (born 1976) is an American cryptographer and security technologist. Green is an Associate Professor of Computer Science at the

Johns Hopkins Johns Hopkins (May 19, 1795 – December 24, 1873) was an American merchant, investor, and philanthropist. Born on a plantation, he left his home to start a career at the age of 17, and settled in Baltimore, Maryland, where he remained for mos ...

Information Security Institute. He specializes in applied cryptography, privacy-enhanced information storage systems, anonymous

cryptocurrencies A cryptocurrency (colloquially crypto) is a digital currency designed to work through a computer network that is not reliant on any central authority, such as a government or bank, to uphold or maintain it. Individual coin ownership records ...

, elliptic curve crypto-systems, and satellite television piracy. He is a member of the teams that developed the

Zerocoin Zerocoin is a privacy protocol proposed in 2013 by Johns Hopkins University professor Matthew D. Green and his graduate students, Ian Miers and Christina Garman. It was designed as an extension to the Bitcoin protocol that would improve Bitco ...

anonymous

cryptocurrency A cryptocurrency (colloquially crypto) is a digital currency designed to work through a computer network that is not reliant on any central authority, such as a government or bank, to uphold or maintain it. Individual coin ownership record ...

and Zerocash. He has also been influential in the development of the

Zcash Zcash is a privacy-focused cryptocurrency based on Bitcoin's codebase. It shares many similarities, such as a fixed total supply of 21 million units. Transactions can be transparent, similar to bitcoin transactions, or they can be shielded t ...

system. He has been involved in the groups that exposed vulnerabilities in RSA BSAFE,

Speedpass Speedpass was a keychain radio-frequency identification (RFID) device introduced in 1997 by Mobil (which merged with Exxon to become ExxonMobil in 1999) for electronic payment. It was originally developed by Verifone. By 2004, more than seven mil ...

and

E-ZPass E-ZPass Interagency Group (E-ZPass Group trade name and E-ZPass product brand) is an electronic toll collection system used on toll roads, toll bridges, and toll tunnels in the eastern half of the United States. The group itself is composed of ...

. Green lives in Baltimore, MD with his wife, Melissa, 2 children and 2 miniature dachshunds.

Education

Green received a B.S. from

Oberlin College Oberlin College is a Private university, private Liberal arts colleges in the United States, liberal arts college and conservatory of music in Oberlin, Ohio, United States. Founded in 1833, it is the oldest Mixed-sex education, coeducational lib ...

(Computer Science), a B.M. from

(Electronic Music), a Master's from

Johns Hopkins University The Johns Hopkins University (often abbreviated as Johns Hopkins, Hopkins, or JHU) is a private university, private research university in Baltimore, Maryland, United States. Founded in 1876 based on the European research institution model, J ...

(Computer Science), and a PhD from

(Computer Science). His dissertation was titled "Cryptography for Secure and Private Databases: Enabling Practical Data Access without Compromising Privacy".

Blog

Green is the author of the blog, "A Few Thoughts on Cryptographic Engineering". In September 2013, a blog post by Green summarizing and speculating on NSA's programs to weaken cryptography, titled "On the NSA", was controversially taken down by Green's academic dean at Johns Hopkins for "contain nga link or links to classified material and also

sing Singing is the art of creating music with the voice. It is the oldest form of musical expression, and the human voice can be considered the first musical instrument. The definition of singing varies across sources. Some sources define singi ...

the NSA logo". As

Ars Technica ''Ars Technica'' is a website covering news and opinions in technology, science, politics, and society, created by Ken Fisher and Jon Stokes in 1998. It publishes news, reviews, and guides on issues such as computer hardware and software, sci ...

notes, this was "a strange request on its face", as this use of the NSA logo by Green was not "reasonably calculated to convey the impression that such use is approved, endorsed, or authorized by the National Security Agency", and linking classified information published by news organizations is legally entirely uncontroversial. The university later apologized to Green, and the blog post was restored (sans NSA logo), with a Johns Hopkins spokesman saying that "I'm not saying that there was a great deal of legal analysis done" as explanation for the legally unmotivated takedown. In addition to general blog posts about NSA, encryption, and security, Green's blog entries on NSA's backdoor in

Dual_EC_DRBG Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) is an algorithm that was presented as a cryptographically secure pseudorandom number generator (CSPRNG) using methods in elliptic curve cryptography. Despite wide public criti ...

, and

RSA Security RSA Security LLC, formerly RSA Security, Inc. and trade name RSA, is an American computer security, computer and network security company with a focus on encryption and decryption standards. RSA was named after the initials of its co-founders, ...

's usage of the backdoored

cryptographically secure pseudorandom number generator A cryptographically secure pseudorandom number generator (CSPRNG) or cryptographic pseudorandom number generator (CPRNG) is a pseudorandom number generator (PRNG) with properties that make it suitable for use in cryptography. It is also referred t ...

(CSPRNG), have been widely cited in the mainstream news media.

Work

Green currently holds the position of Associate Professor at the Johns Hopkins Information Security Institute. He teaches courses pertaining to practical cryptography. Green is part of the group which developed

, an anonymous

protocol. Zerocoin is a proposed extension to the Bitcoin protocol that would add

anonymity Anonymity describes situations where the acting person's identity is unknown. Anonymity may be created unintentionally through the loss of identifying information due to the passage of time or a destructive event, or intentionally if a person cho ...

Bitcoin Bitcoin (abbreviation: BTC; Currency symbol, sign: ₿) is the first Decentralized application, decentralized cryptocurrency. Based on a free-market ideology, bitcoin was invented in 2008 when an unknown entity published a white paper under ...

transactions. Zerocoin provides anonymity by the introduction of a separate ''zerocoin'' cryptocurrency that is stored in the Bitcoin block chain. Though originally proposed for use with the Bitcoin network, zerocoin could be integrated into any

. His research team has exposed flaws in more than one third of SSL/TLS encrypted web sites as well as vulnerabilities in encryption technologies, including RSA BSAFE, Exxon/Mobil

, and automotive security systems. In 2015, Green was a member of the research team that identified the Logjam vulnerability in the TLS protocol. Green started his career in 1999 at AT&T Laboratories in Florham Park, New Jersey. At AT&T Labs he worked on a variety of projects including audio coding/secure content distribution, streaming video and wireless localization services. As a graduate student he co-founded Independent Security Evaluators (ISE) with two fellow students and Avi Rubin in 2005. Green served as CTO of ISE until his departure in 2011. He also co-founded Security Companies: Zeutro and Sealance. Green is a member of the technical advisory board for the Linux Foundation Core Infrastructure Initiative, formed to address critical Internet security concerns in the wake of the

Heartbleed Heartbleed is a security bug in some outdated versions of the OpenSSL cryptography library, which is a widely used implementation of the Transport Layer Security (TLS) protocol. It was introduced into the software in 2012 and publicly disclos ...

security bug disclosed in April 2014 in the

OpenSSL OpenSSL is a software library for applications that provide secure communications over computer networks against eavesdropping, and identify the party at the other end. It is widely used by Internet servers, including the majority of HTTPS web ...

cryptography library. He sits on the technical advisory boards for CipherCloud, Overnest and Mozilla Cybersecurity Delphi. Green co-founded and serves on the Board for Directors of the Open Crypto Audit Project (OCAP), which undertook a security audit of the

TrueCrypt TrueCrypt is a discontinued source-available freeware utility software, utility used for on-the-fly encryption (OTFE). It can create a virtual encrypted disk within a file, encrypt a Disk partitioning, partition, or encrypt the whole Data storag ...

software.

References

External links

Matthew D. Green
his personal page at Johns Hopkins University
A Few Thoughts on Cryptographic Engineering
his personal crypto blog
CE' website
his company page {{DEFAULTSORT:Green, Matthew D. 1976 births Living people Oberlin College alumni Johns Hopkins University alumni Johns Hopkins University faculty Modern cryptographers InfoSec Twitter