Apoorv Kothari is a systems engineer with 11 years of experience building secure, production-grade systems across cloud, embedded, and mobile platforms. He combines deep Scala and Java expertise with practical AWS, Docker, Android, and PostgreSQL experience, having worked at Cloudflare and AWS and contributed to high-profile open-source projects like AWS's s2n-tls and s2n-quic. His contributions to TLS/QUIC implementations show a security-first mindset—auditing memcmp, improving padding and cipher handling, and implementing kTLS sendmsg support—alongside cryptography and protocol-level fixes. Earlier work spans embedded ARM systems for aerospace and complex offline/mobile apps, demonstrating comfort from low-level hardware debugging to end-user product features. He studied functional programming at EPFL and maintains a portfolio of Android and freelance projects at toidiu.com/projects, reflecting a balance of research-driven rigor and hands-on delivery.
11 years of coding experience
10 years of employment as a software developer
EE Electrical Engineering, EE Electrical Engineering at The Cooper Union for the Advancement of Science and Art
Functional Program Design in Scala, Functional Program Design in Scala at EPFL
Contributions:3 releases, 409 reviews, 194 commits in 1 year 11 months
Contributions summary:Apoorv's contributions primarily focus on comments and header protection in the QUIC protocol implementation. They fixed wording in comments within the `receive_buffer.rs` file. They also separated header keys from crypto keys in `main.rs` and implemented a fix for ensuring that packets are decrypted before the duplicate check. The user demonstrated expertise in cryptography by incorporating fixes in the ring library for the QUIC protocol.
Contributions:3 releases, 905 reviews, 49 commits in 1 year 8 months
Contributions summary:Apoorv's contributions primarily focused on enhancing the security of the TLS/SSL implementation, as seen through various code changes. The user added a security policy based on RFC9151, which involves updating cipher preferences and certificate signature preferences. The user also addressed vulnerabilities and security concerns by auditing and fixing `memcmp` usage, improving padding handling and providing a fix related to OpenSSL3 provider loading, particularly for RC4 cipher support. The user's work extended to the kTLS feature by implementing sendmsg to configure ULP and related file descriptors.
cryptographysslc99tlscrypto
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.