Our people
Meet the experts protecting digital infrastructure
Matt Caswell leads OpenSSL Foundation and is responsible for ensuring the delivery of the OpenSSL Mission and Values. He is a subject matter expert in the OpenSSL Library’s SSL/TLS implementation. Matt has been a member of the OpenSSL development team for over 10 years and has implemented TLSv1.3 in OpenSSL as well as many other high profile features and capabilities.
Tomáš Mráz joined the OpenSSL team in 2021 as a Software Developer after being a long-time maintainer of the OpenSSL Library and other crypto packages in Red Hat Enterprise Linux. Tomáš, along with his other roles, continues to do software development of the OpenSSL Library.
Richard Levitte has been an OpenSSL Library developer and committer since the very start of the project, as well as a maintainer for almost as long, and has been part of the OpenSSL team in a full time capacity since 2015. Richard’s major focus is on the crypto library, providers (and previously, engines), the build system and portability.
Jon Ericson is present on the Communities website as well as elsewhere. He started his career as a C programmer for the US National Weather Service and NASA’s Jet Propulsion Laboratory. When Stack Overflow launched in beta, Jon was an early contributor and later joined as a full-time community manager for the entire Stack Exchange network. Recently he’s consulted with community owners to resolve a variety of social and technical hurdles.
Amy Parker has more than 20 years of nonprofit experience across four continents and holds the Certified Fund Raising Executive (CFRE) credential. She works to translate the Foundation’s mission into actionable plans and ensure those plans are funded and implemented.
Ryan Hooper is an Associate OpenSSL Foundation Engineer on part-time secondment from his role as Software Developer at Cisco Systems. With years of hands-on experience on many different platforms across both TLS and IPsec stacks, Ryan brings deep expertise in secure communications. At OpenSSL Foundation, he contributes to the advancement of open source cryptographic solutions; at Cisco, he helps integrate Common Crypto to achieve government certifications.
Daniel Kubec is a Senior Software Engineer with over twenty years of industry experience. He has expertise in operating systems, high-throughput networks, protocols, cryptography, and security-related domains. Daniel has worked at several successful cybersecurity startups and corporations, particularly in the telecommunications sector, along with his contributions to open-source security.
Igor Ustinov has been connected with the OpenSSL Library for nearly 20 years. His work focuses on adding new cryptographic algorithms and building the infrastructure that supports them. He also has extensive experience providing technical support for cryptographic software and ensuring compliance with information security standards.
We're hiring
Join our mission to secure the digital world
Board of Directors
OpenSSL Foundation activities are supervised by a board of directors elected from among the Members. The Board of Directors elects the officer roles (President, Secretary, Treasurer).
Members
Members are responsible for electing the Board of Directors.
Advisory Committees
OpenSSL Foundation has two advisory bodies which are critical in enhancing our governance structure, ensuring that the decisions reflect the diverse stakeholders involved and that our Mission and Values stay aligned with the communities’ needs.
For more information about the definition of our communities and the function of the Advisory Committees refer to the OpenSSL Communities website.
Business Advisory Committee
The Business Advisory Committee (BAC) provides the Foundation with feedback from the OpenSSL communities they represent about what the project should be prioritize. Representatives also advocate for OpenSSL within their respective communities. Members of the BAC through December 2025 are:
Academics – Shubham Kumar (NgKore)
Shubham Kumar is the Co-Founder of NgKore, India’s first open-source community focused on PQC and eBPF, and also a mentor within the Linux Foundation Decentralized Trust (LFDT). His background is in network security and telecom, where he has spent the last few years working on how PQC can be integrated into next-generation systems. Along the way, he has authored technical reports, whitepapers, and patents on PQC migration strategies for different networks.
His journey with OpenSSL started long before he even realized it — back when he was tinkering on his first Ubuntu laptop. Since then, it has become a core part of his work. These days, he builds and tests PQC-enabled versions of internet protocols, and he has also had the chance to present his work on protocol migration using OpenSSL at the OpenSSL Conference, 2025 (which is one of his sources of motivation to join the BAC).
If elected to represent the academic community on the BAC, he would like to focus on bringing every individual perspective into the Foundation’s strategic and technical roadmap. His goal is to ensure that decisions regarding OpenSSL’s direction reflect not only the needs of the industry but also the research and education community, which often pioneers new cryptographic ideas. He also wants to encourage more collaboration and engagement between universities, research labs, and open-source contributors so that innovation in cryptography doesn’t stay on paper—it reaches the people who build and secure the internet every day.
Committers – Vaccant
Distributions – Clemens Lang (Red Hat)
I am nominating myself for the distributions representative of the OpenSSL Foundation Business Advisory Committee.
The Red Hat Enterprise Linux (RHEL) Crypto Team maintains and contributes to OpenSSL and other crypto libraries in Fedora, CentOS Stream, and RHEL. As the Product Owner for this team, I have a good understanding of cryptography in distributions in general, but also how they use OpenSSL, and what concerns and problems they have with it. I'd like to represent this point of view in the Business Advisory Committee, and push for modernization without leaving users (both in the OSS project and the person sense) behind. If my title makes you think I'm all talk no code, check out my pull requests. If this sounds good to you, I'd appreciate your vote!
So far, Dmitry Belyavski from the RHEL Crypto Team represented distributions on the OpenSSL Foundation BAC, but he is not planning to run again and has asked me to do so instead.
I want to stress that I'm not in this to represent Red Hat's interests only: For example, the Fedora community regularly disagrees with Red Hat's opinions on cryptography, and I also maintain OpenSSL in MacPorts. My employment contract says participation in an open source community project does not constitute a conflict of interest even where I may make a determination that is adverse to Red Hat's interests. I intend to use this privilege where necessary to further the interests of distributions in general.
One particular goal I want to push for is an improvement in contribution experience, because I believe this will be healthy for the project. Some lively discussion has already started, and I have a few more ideas to propose.
Individuals – Randall Becker
I have been the community maintainer for the NonStop port of OpenSSL since 1.0.2. My participation in Open Source goes back to the early 1990s, when I was involved in porting NFS, RPC, and other smaller components to the NonStop platform. I started in the industry in 1979.
My contribution for BAC of the Foundation or the Corporation is to provide perspectives and experience from exotic platforms to the OpenSSL team. I have served on the boards of directors of two companies (one as chair) and the Richmond Hill Board of Trade (director and chair). I also have extensive experience with Roberts New Rules of Order.
Large Businesses – Dr. Yi Ouyang (Oracle)
I am Dr. Yi Ouyang, currently serving as the Director of Software Development at Oracle, where I lead the Oracle Crypto Foundation team. My team is responsible for managing network security, data encryption, and authentication technologies.
I earned my Ph.D. in Computer Science from Dartmouth College, New Hampshire, USA in 2008. My academic research focused on encryption key management, data protection, and privacy in sensor networks, with several publications in prestigious international conferences. Since joining Oracle, I have played a key role in the development of various security products and features.
OpenSSL 3.x has seen increased adoption across enterprises and large organizations due to its robust implementation, pluggable architecture, superior performance, and support for FIPS. As enterprise solutions often face diverse customer requirements and that too under the most demanding operational conditions, they serve as ideal proxies for real-world use cases, extending the reach of OpenSSL into various mission-critical applications worldwide.
Oracle databases are used by hundreds of thousands of enterprises globally, powering some of the most sensitive and high-demand workloads. In alignment with industry standards and enterprise needs, Oracle has adopted OpenSSL 3.x as the cryptographic library for its database and related products. As the leader of the integration effort for OpenSSL within Oracle's database systems, I am uniquely positioned to bring real-world deployment insights and usage requirements to the OpenSSL community.
In today’s rapidly advancing GenAI landscape, the need for a cryptographic framework that is 100% reliable, secure, and resilient under all conditions is paramount. As a member of the OpenSSL Foundation Business Advisory Committee (BAC), I would contribute my expertise to help guide and prioritize the most critical enterprise requirements. This includes shaping the future direction of OpenSSL to meet the demands for functionality, security, performance, reliability, and extensibility. Together, we can ensure OpenSSL remains as #1 cryptographic tool worldwide.
Given my deep involvement in enterprise-level security and OpenSSL integration, I am honored to nominate myself for a position on the OpenSSL Foundation Business Advisory Committee. I am committed to leveraging my knowledge and experience to help OpenSSL meet the evolving needs of the global enterprise community.
Small Businesses – Vacant
Technical Advisory Committee
The Technical Advisory Committee (TAC) advises the Foundation on implementation details when it comes to developing the OpenSSL Library. Since they speak for a variety of communities, representatives broaden our understanding of the ways the Library is used. Members of the TAC through May 2026 are:
Academics – Nicola Tuveri (Tampere University)
A Researcher at Tampere University (Finland), I contributed to OpenSSL for the first time in 2010, later I had the honor of becoming an OpenSSL Committer and I have been serving in the OpenSSL Technical Committee since 2019. I have also been serving the Academic Community as a representative in the OpenSSL Foundation BAC.
My research specializes in software and micro architecture side-channel analysis and the integration of modern cryptosystems (lately mainly PQC) in mainstream libraries such as OpenSSL.
Committers – Dmitry Belyavskiy
I have 20+ years of experience with OpenSSL development, have been a Committer since 2019 and a member of the OpenSSL Technical Committee since 2021. I am an OpenSSL maintainer in RHEL, CentOS, and Fedora Linux distributions. My last major contribution to OpenSSL was the introduction of opaque objects for dealing with non-extractable symmetric keys (EVP_SKEY).
My main interest in OpenSSL development is its pluggability. As much extending the functionality as possible should be doable via the providers mechanism. I also think that we need to provide more handles for extending system-wide and application-wide configuration of OpenSSL as a framework.
I believe that something like maintainer’s club should be established. This club could also participate in decisions about feature branches and be involved in the CVE process.
I think that we currently don’t have enough people to review the PRs. I think we should add the role of reviewers to the role of committers. I believe that the distribution’s representatives and the representatives of major companies having their forks should be granted the status of reviewers.
I think that for better communication with various communities OpenSSL, both Corporation and Foundation, should introduce the practice of Open Hours.
Distributions – [vacant]
No election was held, and the seat remains vacant
Individuals – Igor Ustinov
I have been involved with OpenSSL since 2006, with a focus on the integration of national cryptographic algorithms. This is a fairly niche area, so I’ve learned firsthand that different users value different aspects of OpenSSL—what’s essential for one may not even occur to another. In a community of individuals, such diversity of needs and perspectives is likely to be especially broad. I believe it’s important to build an open and inclusive environment for discussion, where every voice is heard and every use case is considered.
Large Businesses – Barry Fussell (Cisco)
I’ve worked with forks of OpenSSL for 14 years. During that time, I’ve lead Cisco’s development of crypto and TLS features as well as FIPS and Common Criteria enhancements. As part of our Common Security Modules Team, we support dozens of Cisco product teams that use our OpenSSL fork. I am a current member of OpenSSL’s large corporation community. I’ve also been heavily involved in the creation of ACVP and AMVP automation working closely with NIST and NCCoE. Using that community development experience and my knowledge base from Cisco, working with a set of very diverse teams, provides an understanding of the technical interests as well as hurdles encountered by a large corporation environment. I believe that will be beneficial to the community and technical advisory team.
Small Businesses – Aditya Koranga (PQStation)
Aditya Koranga is a leading expert in Post-Quantum Cryptography (PQC), Telco Security, and cloud-native technologies, currently serving as the Vice Chair of Post Quantum Cryptography Alliance(PQCA)’s TAC & Chief Security Architect at CORAN LABS, playing a pivotal role in designing and implementing various cryptographic suites and frameworks.
Aditya’s expertise spans a range of open-source projects, including OpenSSL, liboqs, cuPQC, Bouncy Castle, StrongSwan, etc. Along with that he has also led open-source communities such as ngKore and Magma India.
Aditya also focuses on the optimization of cryptographic algorithms for example in KEM algorithms: modifying distribution methods, noise sampling, and NTT reduction schemes. He has worked on cryptographic benchmarking, hardware/software crypto acceleration, and authored several technical blogs, white papers, technical reports, deployment videos on several cryptographic tools including OpenSSL and has patents in Post Quantum security.
Beyond his technical expertise, Aditya is a writer, a poet, and a rapper (sometimes, on the weekends) who enjoys reading RFCs before going to bed.
“As a TAC member, I will drive its adaptability, ensuring cryptographic solutions are effectively used and integrated into real-world applications. My focus will be on expanding contributions, fostering collaborations, and bringing more impactful individuals under OpenSSL. Beyond development, I believe in the right alignment between innovation and marketing and will work to unify the community, and ensure transparency so we can move forward together. I will also support the community in executing the OpenSSL Foundation and the OpenSSL Corporation vision, helping wherever needed to strengthen our collective mission."
We believe everyone should have access to security and privacy tools.
Join our mission to protect global digital infrastructure