@error024.bsky.social
PhD, Post-Quantum cryptography. https://error0024.github.io/
π After 4 years, 7 papers, countless joyful moments, and meeting so many great people along the way, Iβm excited to share that Iβve officially obtained my PhD!
Itβs been an incredible journey of learning, persistence, and growth.
My thesis is now available here:
π pure.tue.nl/ws/portalfil...
Delete twitter from the phone. So you only get there from you computer (if you even need that)
09.10.2025 12:21 β π 0 π 0 π¬ 1 π 0We are alarmed by reports that Germany is on the verge of a catastrophic about-face, reversing its longstanding and principled opposition to the EUβs Chat Control proposal which, if passed, could spell the end of the right to privacy in Europe. signal.org/blog/pdfs/ge...
03.10.2025 16:14 β π 3998 π 2433 π¬ 41 π 147Iβm flagging this nice book/paper on FHE schemes not necessarily because itβs correct and I endorse it, but because it looks pretty useful. arxiv.org/pdf/2503.05136
22.09.2025 19:21 β π 27 π 4 π¬ 1 π 0
CryptoCorgi
20.09.2025 20:22 β π 2 π 0 π¬ 0 π 0Some can always find a way to communicate and get uncensored information. But the goal is to disconnect the general audience from accessing independent news. It is important to fight censorship not for your own access, but for those who wonβt fight.
18.09.2025 18:09 β π 1 π 0 π¬ 0 π 0I get mine from news.zksecurity.com :)
And zkmesh.substack.com
EU Chat Control criticized by 500 cryptographers over privacy risks
Over 500 cryptographers warn the EU draft βChatβ―Controlβ could weaken endβtoβend encryption. The EU council votes on the Danish text on Sepβ―12,β―2025. https://getnews.me/eu-chat-control-criticized-by-500-cryptographers-over-privacy-risks/ #euchatcontrol #privacy #cryptography
09.09.2025 11:37 β π 3 π 3 π¬ 0 π 0Will there be a recording?
25.08.2025 17:27 β π 0 π 0 π¬ 1 π 0That is wild! I am envious of your students; that is top-level material!
06.08.2025 18:19 β π 1 π 0 π¬ 0 π 0I'm thrilled to announce that after months of intensive work, the complete materials for my Applied Cryptography course at the American University of Beirut are now finished: both Part 1 (Provable Security) and Part 2 (Real-World Cryptography)!
06.08.2025 08:01 β π 31 π 9 π¬ 4 π 1
I made a video about my upcoming applied cryptography course: youtu.be/z6kK7rIbyB0
28.07.2025 08:51 β π 23 π 3 π¬ 3 π 0
26.07.2025 20:56 β π 2 π 0 π¬ 0 π 0
Crypto 2025 is just around the corner! Check out the full program here:
crypto.iacr.org/2025/program...
Join us on Monday for our talk where we explore the tradeoffs of hash-based signatures.
We then apply these findings to propose post-quantum Ethereum PoS signatures:
eprint.iacr.org/2025/1332
Abstract. In this note, we present a new instantiation of the hash-based multi-signature framework introduced by Drake, Khovratovich, Kudinov, and Wagner (CiC Vol 2 Issue 1, eprint 2025/055) for Ethereumβs consensus layer. Inspired by a recent work of Khovratovich, Kudinov, and Wagner (Crypto 2025, eprint 2025/889), we instantiate the framework with a novel incomparable encoding that improves the tradeoff between signature size and verification hashing. The purpose of this document is to make explicit how to use the ideas of the latter work within the framework of Drake, Khovratovich, Kudinov, and Wagner.
Technical Note: LeanSig for Post-Quantum Ethereum (Justin Drake, Dmitry Khovratovich, Mikhail Kudinov, Benedikt Wagner) ia.cr/2025/1332
22.07.2025 22:05 β π 2 π 1 π¬ 0 π 0I am rereading the comics. These are great an so many new ones came out :)
13.07.2025 07:28 β π 1 π 0 π¬ 0 π 0
This battle will keep playing out over and over again until they achieve something that their own citizens have made it clear they donβt want. www.techradar.com/vpn/vpn-priv...
05.07.2025 17:39 β π 95 π 43 π¬ 3 π 6You never asked π
29.06.2025 17:32 β π 1 π 0 π¬ 0 π 0
PewDiePieβs evolution into a tech geek is so cool! His recent video dives deep into privacy concerns and surveillance issues, while being still fun to watch. I think these are the topics that couldnβt be more relevant today. Highly recommend watching his take on it:
π youtu.be/u_Lxkt50xOg?...
Single author, fifteen pages, reduces the bit complexity of millenia-old UOV instances!!
19.06.2025 12:39 β π 13 π 3 π¬ 1 π 0A touchpad is also acceptable, but if you are using a mouse, why would you use Appleβs? :)
19.06.2025 17:32 β π 1 π 0 π¬ 0 π 0Apple announces that TLS client connections in version 26+ will be using hybrid PQ X25519MLKEM768 by default
support.apple.com/en-us/122756
A nice 127 pages read π₯²
23.05.2025 11:37 β π 2 π 0 π¬ 0 π 0
Abstract. Hash-based signatures have been studied for decades and have recently gained renewed attention due to their post-quantum security. At the core of the most prominent hash-based signature schemes, XMSS and SPHINCS+, lies a one-time signature scheme based on hash chains due to Winternitz. In this scheme, messages are encoded into vectors of positions (i.e., vertices in a hypercube) in the hash chains, and the signature contains the respective chain elements. The encoding process is crucial for the efficiency and security of this construction. In particular, it determines a tradeoff between signature size and computational costs. Researchers have been trying to improve this size-time tradeoff curve for decades, but all improvements have been arguably marginal. In this work, we revisit the encoding process with the goal of minimizing verification costs and signature sizes. As our first result, we present a novel lower bound for the verification cost given a fixed signature size. Our lower bound is the first to directly apply to general encodings including randomized, non-uniform, and non-injective ones. Then, we present new encodings and prove their security. Inspired by our lower bound, these encodings follow a counterintuitive approach: we map messages non-uniformly into the top layers of a much bigger hypercube than needed but the encoding itself has (hard to find) collisions. With this, we get a 20 % to 40 % improvement in the verification cost of the signature while keeping the same security level and the same size. Our constructions can be directly plugged into any signature scheme based on hash chains, which includes SPHINCS+ and XMSS.
Image showing part 2 of abstract.
At the Top of the Hypercube β Better Size-Time Tradeoffs for Hash-Based Signatures (Dmitry Khovratovich, Mikhail Kudinov, Benedikt Wagner) ia.cr/2025/889
19.05.2025 10:27 β π 5 π 2 π¬ 0 π 1Will there be a recording?
17.05.2025 14:44 β π 1 π 0 π¬ 1 π 0
Great initiative!
Saw some references for Go. Can I suggest a recent one: www.manning.com/books/hackin...
Excited to be heading to #Eurocrypt2025 in Madrid soon!
Iβll be speaking at Algebraic Hash Cryptanalysis Days on Security Requirements in the Context of Hash-Based Signatures.
Catch me at the affiliated events or during the main conference. Letβs connect! #Cryptography #Madrid
π€ My talk from #PQCrypto2025 is now live on YouTube!
I discussed rejection types in KEMs. Why they matter, how they impact security and which one should you choose.
Check it out & let me know your thoughts! π
πΊ youtu.be/W-gUd_qTUs4?...
#PostQuantum #Cryptography #KEMs
Did they discuss the applications?
25.04.2025 08:49 β π 0 π 0 π¬ 1 π 0
