Pinned post

preprint is now available on ia.cr/2021/826 and arXiv arxiv.org/abs/2106.08759.

NTRU Prime implementation & integration for servers & clients via : post-quantum key exchange at new record speed.

Try the demo yourself: opensslntru.cr.yp.to

Show thread

RT @luca_defeo@twitter.com

IBM's got talent (aye, aye)

The Pirates of the CSIDH salute ye, @KhanhCrypto@twitter.com, Maxime (and extras Sebastian, @BootleJonathan@twitter.com, Patrick, Vadim, @gregor_seiler@twitter.com)

youtu.be/2uVsVYtedVQ

🐦🔗: twitter.com/luca_defeo/status/

RT @PurnalToon@twitter.com

It is 2022, and your computer now runs at 3 MHz.

“Do you mean 3 GHz?”

Nope! A malicious hyperthread can make shared libraries run up to ~1000x slower, resulting in a huge SNR boost for side-channel attacks.

[HyperDegrade, by @acaldaya@twitter.com]

🐦🔗: twitter.com/PurnalToon/status/

RT @tqbf@twitter.com

I’m a sucker for vuln research like this. The team found a cool bug (the APIC fails to zero out the full 16 bytes of a buffer used to satisfy a 4-byte read, and so leaks cached data in the unused 12 bytes). But what’s cool is how they did it.

🐦🔗: twitter.com/tqbf/status/155708

RT @borrello_pietro@twitter.com

Today we disclose ÆPIC Leak: Architecturally Leaking Uninitialized Data from the Microarchitecture 🔥
It is the *first* architectural CPU bug able to leak sensitive data from the cache hierarchy: like an uninitialized read but in the CPU itself.

aepicleak.com/

🐦🔗: twitter.com/borrello_pietro/st

RT @hashbreaker@twitter.com

New blog post "NSA, NIST, and post-quantum cryptography: Announcing my second lawsuit against the U.S. government." blog.cr.yp.to/20220805-nsa.htm Case filed in federal court today by @LoevyAndLoevy@twitter.com.

🐦🔗: twitter.com/hashbreaker/status

RT @campuscodi@twitter.com

Google has open-sourced a new tool called Paranoid that can be used to check for well-known weaknesses in cryptographic artifacts such as public keys, digital signatures, and general pseudorandom numbers

github.com/google/paranoid_cry

🐦🔗: twitter.com/campuscodi/status/

RT @jjchidguez@twitter.com

I share with you the released version of sibc!
Thanks to the contributors for the speedups on the library.
You can play with a faster csidh (in python)

PS. We added some links and comments concerning Castryck-Decru's attack!
pypi.org/project/sibc/
github.com/JJChiDguez/sibc

🐦🔗: twitter.com/jjchidguez/status/

2022 submission deadline is 22 Aug (AoE)!
27th Nordic Conference on Secure IT Systems,
30 Nov—2 Dec, Reykjavik University, Iceland.
nordsec2022.ru.is/

RT @hashbreaker@twitter.com

NIST's latest report (1) says NIST is confident in the security of Kyber; (2) says Kyber-512 >= AES-128; (3) says Kyber-768 >= AES-192. But attack advances keep reducing lattice security levels! It will be completely unsurprising if the next round of attacks falsifies #2 and #3.

🐦🔗: twitter.com/hashbreaker/status

RT @KrijnReijnders@twitter.com

Kyber is the new PQC KEM! If you wonder how it works, but are a bit afraid of lattices, Ruben Gonzalez and I have you covered: just watch our video at CCC, in which we explain all you need to know: media.ccc.de/v/rc3-2021-cwtv-2

🐦🔗: twitter.com/KrijnReijnders/sta

RT @jmkorhonen@twitter.com

Of all the ways to organize an industrial society that humans have tried so far, the Nordic social democracy is the least bad. Not perfect and in dire need of improvement, but still least bad.

Here's where Finland for instance shines: a thread.

🐦🔗: twitter.com/jmkorhonen/status/

RT @hashbreaker@twitter.com

New resource page available on timing attacks, including recommendations for action to take regarding overclocking attacks such as : timing.attacks.cr.yp.to Don't wait for the next public overclocking attack; take proactive steps to defend your data against compromise.

🐦🔗: twitter.com/hashbreaker/status

RT @SPIRSProject@twitter.com

Today we are in Tampere and online for the third regular meeting! Thanks @NISEC_TAU@twitter.com for hosting us!

🐦🔗: twitter.com/SPIRSProject/statu

RT @BroxPiedad@twitter.com

Happy to be in Tampere with our partners in @SPIRSProject@twitter.com . Thanks to @NISEC_TAU@twitter.com for hosting us!

🐦🔗: twitter.com/BroxPiedad/status/

RT @davidalqabri@twitter.com

A very productive meeting at Tampere. We have got a solid basis and better companions to get a very successful project. Cheers for @SPIRSProject@twitter.com

🐦🔗: twitter.com/davidalqabri/statu

RT @SPIRSProject@twitter.com

Yesterday we finished the day with a very nice dinner. Right now, we are back to work! Here we go! instagram.com/p/Ce2zUySrJR7/?i

🐦🔗: twitter.com/SPIRSProject/statu

Show older
FLOSS.social

For people who care about, support, or build Free, Libre, and Open Source Software (FLOSS).