Robuta

DMCC has announced the launch of the DMCC Crypto Centre, a comprehensive ecosystem for businesses operating in the cryptographic and blockchain sectors.

Overview This document is the result of a design and code review of the cryptographic constructions and algorithms used in the keep network. This cryptographic...

Oct 23, 2025 - IDEMIA Sphere Cryptographic Library offers certified algorithms for secure, high-performance encryption and digital signature, supporting both classical...

Mar 31, 2025 - The proposed RV128 coprocessor offloads cryptographic workloads from the main CPU thus enhancing system efficiency.

Discover what makes a Cryptographic Random Number Generator (CRNG) truly BASED: unpredictable, statistically random, and resilient against attacks.

If you don’t follow NSA news obsessively, you might have missed yesterday’s massive Snowden document dump from Der Spiegel. The documents provide a...

Cryptographic keys and identities are required to protect data, authenticate devices to the network and each other. These keys are at the heart of any IoT...

I learn about cryptographic vulnerabilities all the time, and they generally fill me with some combination of jealousy (“oh, why didn’t I think of...

I’m a cryptographer and professor at Johns Hopkins University. I’ve designed and analyzed cryptographic systems used in wireless networks,...

We present GPAM the first side-channel attack model that generalizes across multiple cryptographic algorithms, implementations, and side-channel...

A few weeks ago I wrote a long post about the NSA’s ‘BULLRUN’ project to subvert modern encryption standards. I had intended to come back to...

Let me tell you the story of my tiny brush with the biggest crypto story of the year. A few weeks ago I received a call from a reporter at ProPublica, asking...

Public Ledger of Credentials: a cryptographic, strongly-consistent, and recoverable DID method - did-method-plc/did-method-plc

Nov 22, 2025 - Secure your IT infrastructure with modern Cryptographic Solutions – for data protection, integrity and protection against cyber threats.

Aug 2, 2022 - The ISS Embedded Cryptographic Toolkit™ (ECT) is a standards-based, FIPS 140-2 compliant, platform agnostic cryptographic library used by embedded developers...

Last week Apple made an announcement describing changes to the iCloud service for users residing in mainland China. Beginning on February 28th, all users who...

The information security news today is all about Lenovo’s default installation of a piece of adware called “Superfish” on a number of laptops shipped...

I’m supposed to be finishing a wonky series on proof systems (here and here) and I promise I will do that this week. In the midst of this I’ve been...

Warning: extremely wonky cryptography post. Also, possibly stupid and bound for nowhere. One of the hardest problems in applied cryptography (and perhaps all...

A few weeks back I wrote an update on the Truecrypt audit promising that we’d have some concrete results to show you soon. Thanks to some hard work by...

Last week we learned (from two different sources!) that certain RSA implementations don’t properly seed their random number generators before generating...

Peter Todd has shared his take on major new Bitcoin-related idea suggested by Blockstream CEO.

This is the third and penultimate post in a series about theoretical weaknesses in Fiat-Shamir as applied to proof systems. The first post is here, the second...

Aug 9, 2022 - The ISS Embedded Cryptographic Toolkit™ (ECT) is a standards-based, FIPS 140-2 compliant, platform agnostic cryptographic library used by embedded developers...

Verifpal is free and open source software for the analysis and verification of cryptographic protocols. It uses a new, simple language for modeling protocols,...

This post is the second in a two-part series on zero-knowledge proofs. Click here to read Part 1. In this post I’m going to continue the short,...

The first rule of PAKE is: nobody ever wants to talk about PAKE. The second rule of PAKE is that this is a shame, because PAKE — which stands for Password...

Yesterday the New York Times and ProPublica posted a lengthy investigation based on leaked NSA documents, outlining the extensive surveillance collaboration...

Virtru today announced it achieved FIPS 140-2 validation for its JavaScript cryptographic library, the first to be certified by NIST.

Oct 13, 2025 - We review the threats against cryptography on the horizon, the solution to mitigate those threats and actions for network operators to start migration to new...

Journal of Cryptographic Engineering is dedicated to presenting high-quality scientific research on architectures, algorithms, techniques, tools, ...

Apr 11, 2024 - Bouncy Castle is the most widely used FIPS-certified cryptographic API for Java, C#, Kotlin and more.

Trigger warning: incredibly wonky theoretical cryptography post (written by a non-theorist)! Also, this will be in two parts. I plan to be back with some more...

Today’s Washington Post has a story entitled “Johns Hopkins researchers poke a hole in Apple’s encryption”, which describes the results of...

Official blog of Keybase

Last Friday, Joseph Menn from Reuters published an article claiming that RSA, the pioneering security firm and division of EMC, accepted $10 million dollars...

This is the second part of a two three four-part series, which covers some recent results on “verifiable computation” and possible pitfalls that...

You might have heard that a few days ago, Juniper Systems announced the discovery of “unauthorized code” in the ScreenOS software that underlies...

Jacob Appelbaum tweets: Does anyone have a good reading list on practically attacking RC4? I don’t intend to give an exact answer to Jacob’s...

Oct 30, 2025 - Keyfactor's new integration with ServiceNow enables cryptographic vulnerability remediation and quantum-readiness.

Last Thursday, Yahoo announced their plans to support end-to-end encryption using a fork of Google’s end-to-end email extension. This is a Big Deal. With...

May 15, 2024 - Download Bouncy Castle cryptographic APIs for Java or C#, in Kotlin, or as FIPS-certified or Long Term Stable (LTS) releases.

This blog is mainly reserved for cryptography, and I try to avoid filling it with random “someone is wrong on the Internet” posts. After all,...

A few months ago it was starting to seem like you couldn’t go a week without a new attack on TLS. In that context, this summer has been a blessed...

The Dual_EC_DRBG generator from NIST SP800-90A. Update 9/19: RSA warns developers not to use the default Dual_EC_DRBG generator in BSAFE. Oh lord. As a...

One of the best things about modern cryptography is the beautiful terminology. You could start any number of punk bands (or Tumblrs) named after cryptography...

evolutionQ provides future-proof cryptographic resilience for companies in critical industries.

Easily find the minimum cryptographic key length recommended by different scientific reports and governments.