Last year Kudelski Security’s JP Aumasson and X41 D-Sec‘s Markus Vervier were hired to audit Wire‘s cryptography core, the Proteus library. After this audit of the crypto, Wire wanted a
Author: JP Aumasson
https://131002.net
Blockchain: where to start
People often contact me to ask about “the blockchain”—where the definite article ‘the‘ tells a lot about their experience with c̶r̶y̶p̶t̶o̶ blockchains. My answer will
Audit report of IOHK’s ETC wallet
TL;DR: report download. IOHK is an engineering company that builds cryptocurrencies and blockchains for academic institutions, government entities, and corporations. Major projects of IOHK are
Blockchains: How to Steal Millions in 2^64 Operations
I’ve been reviewing the source code of a number of blockchain thingies, both for paid audits and for fun on my spare time, and I
Algorithms can’t be patched
Heartbleed was a disaster, but at least the software could be patched to eliminate the vulnerability. Most of the time, like with Heartbleed, vulnerabilities in crypto
Our submission to NIST’s post-quantum project: Gravity-SPHINCS
In posts of September 25 and 28 we described several optimizations to SPHINCS, a signature algorithm that only relies on hash functions’ security, as opposed to RSA
