I’ve been reviewing the source code of a number of blockchain thingies, both for paid audits and for fun on my spare time, and I
Author: JP Aumasson
https://131002.net
Algorithms can’t be patched
Heartbleed was a disaster, but at least the software could be patched to eliminate the vulnerability. Most of the time, like with Heartbleed, vulnerabilities in crypto
Our submission to NIST’s post-quantum project: Gravity-SPHINCS
In posts of September 25 and 28 we described several optimizations to SPHINCS, a signature algorithm that only relies on hash functions’ security, as opposed to RSA
The making of Serious Cryptography
Many want to write a book, but what most people don’t realize is the actual extent to which it takes to write said book. Grueling
Audit report of the Waves platform
Waves is a blockchain-based tokenization platform that is something like Ethereum, on top of which you can issue your own token and build applications. Two
Improving the SPHINCS post-quantum signature scheme, part 2
SPHINCS is the state-of-the-art algorithm in the category of stateless hash-based signatures. It’s quantum-safe, and thus a potential contender in NIST’s post-quantum crypto standardization project. SPHINCS
