Update (April 19): Yilei Chen announced the discovery of a bug in the algorithm, which he does not know how to fix. This was independently discovered by Hongxun Wu and Thomas Vidick. At present, ...
https://blog.cryptographyengineering.com/2024/04/16/a-quick-post-on-chens-algorithm/
It’s been a while since I wrote an “attack of the week” post, and the fault for this is entirely mine. I’ve been much too busy writing boring posts about Schnorr signatures! But this week...
https://blog.cryptographyengineering.com/2024/01/11/attack-of-the-week-airdrop-tracing/
This post continues a long, wonky discussion of Schnorr signature schemes and the Dilithium post-quantum signature. You may want to start with Part 1. In the previous post I discussed the intuiti...
https://blog.cryptographyengineering.com/2023/11/30/to-schnorr-and-beyond-part-2/
Warning: extremely wonky cryptography post. Also, possibly stupid and bound for nowhere. One of the hardest problems in applied cryptography (and perhaps all of computer science!) is explaining w...
https://blog.cryptographyengineering.com/2023/10/06/to-schnorr-and-beyond-part-1/
Recently a reader wrote in and asked if I would look at Sam Altman’s Worldcoin, presumably to give thoughts on it from a privacy perspective. This was honestly the last thing I wanted to do, si...
https://blog.cryptographyengineering.com/2023/08/21/some-rough-impressions-of-worldcoin/
Back in March I was fortunate to spend several days visiting Brussels, where I had a chance to attend a panel on “chat control“: the new content scanning regime being considered by the EU Com...
A few weeks ago I ran into a conversation on Twitter about the weaknesses of applied cryptography textbooks, and how they tend to spend way too much time lecturing people about Feistel networks a...
https://blog.cryptographyengineering.com/2023/05/08/prfs-prps-and-other-fantastic-things/
As a rule, book reviews are not a thing I usually do. So when I received an out-of-the-blue email from Cory Doctorow last week asking if I would review his latest book, Red Team Blues, it took a ...
https://blog.cryptographyengineering.com/2023/04/24/book-review-red-team-blues/
On March 23 I was invited to participate in a panel discussion at the European Internet Services Providers Association (EuroISPA). The focus of this discussion was on recent legislative proposals...
https://blog.cryptographyengineering.com/2023/03/23/remarks-on-chat-control/
You might have seen the news today that Apple is announcing a raft of improvements to Macs and iOS devices aimed at improving security and privacy. These include FIDO support, improvements to iMe...