Marc Stevens (cryptology)

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
Marc Stevens
Born (1981-04-07) April 7, 1981 (age 37)[1]
Other names Marc Martinus Jacobus Stevens
Alma mater
Known for Cryptography
Scientific career
Fields Computer Science
Academic advisors

Dr. ir. Marc Stevens is a cryptology researcher most known for his work on cryptographic hash collisions and for the creation of the chosen-prefix hash collision tool HashClash as part of his master's degree thesis.[2] He first gained international notoriety for his work with Alexander Sotirov, Jacob Appelbaum, Arjen Lenstra, David Molnar, Dag Arne Osvik, and Benne de Weger in creating a rogue SSL certificate which was presented in 2008 during the 25th annual Chaos Communication Congress warning of the dangers of using the MD5 hash function in issuing SSL certificates.[3] Several years later in 2012, according to Microsoft, the authors of the Flame malware used similar methodology to that which the researchers warned of by initiating an MD5 collision to forge a Windows code-signing certificate.[4] Marc was most recently awarded the Google Security Privacy and Anti-abuse applied award. Google selected Stevens for this award in recognition of his work in Cryptanalysis, in particular related to the SHA-1 hash function.[5]

Marc is currently employed as a Cryptology Researcher at Centrum Wiskunde & Informatica.[6]


External links[edit]