In posts of September 25 and 28 we described several optimizations to SPHINCS, a signature algorithm that only relies on hash functions’ security, as opposed to RSA
Category: Crypto
The making of Serious Cryptography
Many want to write a book, but what most people don’t realize is the actual extent to which it takes to write said book. Grueling
Audit report of the Waves platform
Waves is a blockchain-based tokenization platform that is something like Ethereum, on top of which you can issue your own token and build applications. Two
On the PGP cipher preferences, and a gaffe
I recently discovered a problem that involves PGP and a symmetric cipher called Camellia. It is possible to advertise the use of Camellia in your
How to defeat Ed25519 and EdDSA using faults
We’ve succesfully conducted a fault attack against EdDSA that allowed us to recover enough secret key material to produce fake signatures for any message in a way a verifier cannot detect.
Improving the SPHINCS post-quantum signature scheme, part 2
SPHINCS is the state-of-the-art algorithm in the category of stateless hash-based signatures. It’s quantum-safe, and thus a potential contender in NIST’s post-quantum crypto standardization project. SPHINCS