Signal Finally Rolls Out Usernames, So You Can Keep Your Phone Number Private
20 Feb 2024 · WIRED · Andy Greenberg
“There’s a legitimate community of people who wanted to use Signal without giving other people their phone numbers, and they’re going to be very happy with this change. And then there’s a more hardcore set of people who don’t want to ever give their number to Signal. I think getting a big set of people serviced is the right direction, and working on satisfying all the other people is something for Signal to keep working on,” Matthew Green says.
Apple AirDrop leaks user data like a sieve. Chinese authorities say they’re scooping it up.
12 Jan 2024 · Ars Technica · Dan Goodin
Matthew Green: “For a variety of mildly defensible reasons—which I will come back to in a moment, Apple does not use a secure PSI protocol to solve their AirDrop problem. Instead they did the thing that every software developer does when faced with the choice of doing complicated cryptography or ‘hacking something together in time for the next deadline’: they threw together their own solution using hash functions.”
This Clever New Idea Could Fix AirTag Stalking While Maximizing Privacy
27 Dec 2023 · WIRED · Lily Hay Newman
“What I love about this problem is it seems like there are two competing requirements that can’t be reconciled,” Matthew Green says. “But in cryptography, we can get full privacy and then, magically, the puzzle pieces click into place, or a ‘chemical reaction’ happens, and we phase-transition to a point where suddenly it’s obvious that this is a stalker, not just a benign AirTag. It’s very powerful to be able to go between those two moments.”
Medical implant software systems and methods
5 Dec 2023 · US Patent Office · ISI Staff
ARC researcher Max Zinkus co-invents a patented system for upgrading medical implant firmware via an encrypted and authenticated communication channel.
An Update on Tornado Cash
11 Apr 2023 · Electronic Frontier Foundation · Ross Schulman and Cindy Cohn
Update on litigation between ARC researchers and the US Treasury Department’s OFAC.
Remarks on Chat Control
23 Mar 2023 · Cryptography Engineering · Matthew Green
Matthew Green participates in a panel discussion at the European Internet Services Providers Association (EuroIPSA) on the EU Commission’s chat control content scanning proposal.
Apple’s unholy compromises in China
18 May 2021 · Fortune · Robert Hackett
Fortune quotes Matthew Green and reports on an agreement between Apple and the Chinese government to not use hardware security modules.
Researchers Explain How Locked Android, iOS Phone Encryption Gets Bypassed
18 May 2021 · Gadgets360 · Tasneem Akolawala
Gadgets360 reports on ARC research into mobile device security and privacy controls.
How Law Enforecemnt Gets Around Your Smartphone’s Encryption
21 Jan 2021 · WIRED · Lily Hay Newman
Max Zinkus, Tushar Jois, and Matthew Green are interviewed by WIRED on their research into smartphone encryption.
WhatsApp Has Shared Your Data With Facebook for Years, Actually
8 Jan 2021 · WIRED · Lily Hay Newman
While WhatsApp provides end-to-end encryption of message content, ARC researchers help contextualize how metadata may be used by Facebook to serve ads.
Susan Hohenberger wins Best Paper Award
10 Sep 2020 · ISI News · ISI Staff
Susan Hohenberger and her colleagues win best paper at CRYPTO 2020.
The Quest to Liberate $300,000 of Bitcoin From an Old Zip File
10 Sep 2020 · WIRED · Lily Hay Newman
WIRED quotes Matthew Green on a story involving a legacy zip file encryption scheme.
Here’s when you can trust Zoom, and when you shouldn’t
13 Apr 2020 · Fast Company · Glenn Fleishman
Matthew Green offers context on issues with Zoom’s end-to-end encryption discovered by Citizen Lab.
So Wait, How Encrypted Are Zoom Meetings Really?
3 Apr 2020 · WIRED · Lily Hay Newman
Politico quotes Matthew Green on Zoom’s encryption practices.
Zoom tries to address privacy, security concerns
3 Apr 2020 · Politico · Tim Starks
WIRED quotes Matthew Green on Zoom’s end-to-end encryption claims.
Abhishek Jain receives NSF CAREER Award
6 Feb 2020 · ISI News · ISI Staff
Abhishek Jain is a recipient of the National Science Foundation’s Early CAREER Award.
Does encryption help with privacy, or does it violate public safety?
9 Oct 2019 · Marketplace · Tracey Samuelson
Matthew Green is interviewed by Marketplace on requests by the Austalian, UK, and US governments to hold off end-to-end encryption plans on Facebook Messenger.
Google Will Replace Titan Security Key Over a Bluetooth Flaw
15 May 2019 · WIRED · Lily Hay Newman
Matthew Green quoted in WIRED story on Bluetooth misconfiguration in security keys.
New Software Improves Speed and Accuracy of Cryptography
29 Apr 2019 · ISI News · ISI Staff
Susan Hohenberger is awarded an $800,000 grant from the Office of Naval Research.
Researchers Find Critical Backdoor in Swiss Online Voting System
12 Mar 2019 · Motherboard · Kim Zetter
Motherboard reports on a severe issue in a new Swiss internet voting system. Matthew Green, an assistant professor affiliated with ARC, is quoted.
ISI’s Matt Green Receives $100,000 Google Security and privacy Research Award
6 Mar 2019 · ISI News · ISI Staff
Matthew Green is awarded a $100,000 grant from Google in recognition of his significant contributions to the field of cybersecurity. Green was selected for the award via internal Google nominations and voting. The award will support general research into applied cryptography.
How to Protect Yourself From the Giant Marriott Hack
30 Nov 2018 · WIRED · Lilly Hay Newman
WIRED reports on a data breach affecting up to 500 million people with context from ARC researchers.
Apple to Close iPhone Secuirty Hole That Law Enforcement Uses to Crack
13 Jun 2018 · New York Times · Jack Nicas
Matthew Green helps contextualize Grayshift devices that bypass iPhone passcode protections.
How Did the FBI Access Paul Manafort’s Encrypted Messages?
5 Jun 2018 · Slate · Aaron Mak
Matthew Green comments on how encrypted backups could be used by law enforcement and hackers.
Blockchain Takes the Stage at Flagship Cryptography Conference in Israel
2 May 2018 · Bitcoin Magazine · Amy Castor
Matthew Green presents invited talk on the history of cryptocurrencies at EUROCRYPT'18.
The Under Armour Hack Was Even Worse Than It Had To Be
30 Mar 2018 · WIRED · Lilly Hay Newman
ARC researchers help provide insight into the MyFitnessPal data breach.
US Border Patrol Hasn’t Validated E-Passport Data For Years
22 Feb 2018 · WIRED · Lilly Hay Newman
For over a decade, US Customs and Border Protection has been unable to verify the cryptographic signatures on e-Passports, because they never installed the right software. But digital signatures unforgeable only work if checked.
US Border Patrol Hasn’t Validated E-Passport Data For Years
10 Jan 2018 · WIRED · Andy Greenberg
“It’s just a total screwup. There’s no excuse…if you build a system where everything comes down to trusting the server, you might as well dispense with all the complexity and forget about end-to-end encryption,” says Matthew Green, who reviewed the researchers’ work.
The ‘Secure’ Wi-Fi Standard Has a Huge, Dangerous Flaw
16 Oct 2017 · WIRED · Lilly Hay Newman
ARC researchers offer insight into new WPA2 vulnerabilities discovered by researchers in Belgium.
‘Crypto Anchors’ Might Stop the Next Equifax-Style Megabreach
11 Oct 2017 · WIRED · Andy Greenberg
Matthew Green comments on the increased availability of hardware security modules.
Decade-old Efail flaws can leak plaintext of PGP- and S/MIME-encrypted emails
14 May 2018 · Ars Technica · Dan Goodin Nakashima
Ars Technica staff quote ARC researchers on a report on bugs in encrypted email programs.
Students figure out how to hack Apple’s messaging system
22 Mar 2016 · KPCC · Alex Cohen
Gabriel Kaptchuk is interviewed by KPCC radio about ARC discovering cryptographic vulnerabilities in Apple’s iMessage.
Johns Hopkins researchers poke a hole in Apple’s encryption
20 Mar 2016 · Washington Post · Ellen Nakashima
Matthew Green is interviewed by Washington Post on ARC research identifying cryptographic vulnerabilities in iMessage.