Ben Laurie is a veteran software engineer and security-focused systems designer with over 30 years of programming experience and a track record of stewarding foundational internet security projects. As founder and core team member of OpenSSL and a long-time contributor to Certificate Transparency at Google, he blends deep cryptography expertise with practical engineering—having fixed timing side-channels, buffer issues, and built auditing servers used for TLS certificate transparency. He has led security and transparency efforts at organizations from DeepMind to Google, serves on advisory boards including Our Future Health UK, and remains active in open source across projects like FreeBSD, Apache, Caja and Paparazzi. Based in rural Wales, he pairs rigorous technical craftsmanship with advocacy for privacy and civil liberties, and—less obviously—bridges high-assurance cryptographic work with embedded systems and IoT motor-control contributions.
18 years of coding experience
25 years of employment as a software developer
Latymer
Incomplete Mathematics, Incomplete Mathematics at University of Cambridge
Contributions:227 commits, 8 PRs, 2 pushes in 4 years 4 months
Contributions summary:Ben implemented the beginnings of a command-line client and a general server for auditing TLS certificates. The code changes primarily involved the creation of a server-side component with event handling and network input/output capabilities. The user added functionality for handling client connections, reading data, and basic server operations within the `ct-server.cc` file, while laying out the client interface in `ct.cc`.
Contributions:4 PRs, 51 comments, 6 issues in 2 years 7 months
Contributions summary:Ben primarily contributed to fixing warnings and addressing potential security vulnerabilities within the OpenSSL library, focusing on cryptography, TLS/SSL, and cryptographic libraries. Their work involved modifying code to eliminate warnings, improve code quality, and incorporate constant-time comparisons to mitigate timing-based side-channel attacks, particularly related to padding vulnerabilities in TLS/SSL CBC records. Furthermore, the user made numerous changes to address potential buffer overruns.
crypto-librarycryptographyssltlscrypto
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.