https://blog.cryptographyengineering.com/bitcoin-tipjar/
I write this blog for fun. But if you feel inclined to send me some crypto(currency) it would totally make my day. Aleo:...
cryptographic engineeringtipjarthoughts
https://blog.cryptographyengineering.com/2014/12/29/on-new-snowden-documents/
If you don’t follow NSA news obsessively, you might have missed yesterday’s massive Snowden document dump from Der Spiegel. The documents provide a...
newsnowdendocumentsthoughts
https://blog.cryptographyengineering.com/2012/02/21/random-number-generation-illustrated/
Last week we learned (from two different sources!) that certain RSA implementations don’t properly seed their random number generators before generating...
random number generationillustratedprimerthoughts
https://blog.cryptographyengineering.com/2013/09/06/on-nsa/
Let me tell you the story of my tiny brush with the biggest crypto story of the year. A few weeks ago I received a call from a reporter at ProPublica, asking...
cryptographic engineeringnsathoughts
https://blog.cryptographyengineering.com/2015/12/22/on-juniper-backdoor/
You might have heard that a few days ago, Juniper Systems announced the discovery of “unauthorized code” in the ScreenOS software that underlies...
juniperbackdoorthoughtscryptographic
https://blog.cryptographyengineering.com/2014/04/24/attack-of-week-triple-handshakes-3shake/
The other day Apple released a major security update that fixes a number of terrifying things that can happen to your OS/X and iOS devices. You should...
attackweektriplehandshakes
https://blog.cryptographyengineering.com/about-me/
I’m a cryptographer and professor at Johns Hopkins University. I’ve designed and analyzed cryptographic systems used in wireless networks,...
cryptographic engineeringthoughts
https://blog.cryptographyengineering.com/2013/12/28/a-few-more-notes-on-nsa-random-number/
Last Friday, Joseph Menn from Reuters published an article claiming that RSA, the pioneering security firm and division of EMC, accepted $10 million dollars...
random number generatorsnotesnsa
https://blog.cryptographyengineering.com/2014/11/27/zero-knowledge-proofs-illustrated-primer/
One of the best things about modern cryptography is the beautiful terminology. You could start any number of punk bands (or Tumblrs) named after cryptography...
zero knowledge proofsillustratedprimerthoughts
https://blog.cryptographyengineering.com/2011/12/15/whats-deal-with-rc4/
Jacob Appelbaum tweets: Does anyone have a good reading list on practically attacking RC4? I don’t intend to give an exact answer to Jacob’s...
deal
https://blog.cryptographyengineering.com/2015/08/16/the-network-is-hostile/
Yesterday the New York Times and ProPublica posted a lengthy investigation based on leaked NSA documents, outlining the extensive surveillance collaboration...
networkhostilethoughtscryptographic
https://blog.cryptographyengineering.com/2018/09/23/why-im-leaving-chrome/
This blog is mainly reserved for cryptography, and I try to avoid filling it with random “someone is wrong on the Internet” posts. After all,...
donechrome
https://blog.cryptographyengineering.com/2016/03/21/attack-of-week-apple-imessage/
Today’s Washington Post has a story entitled “Johns Hopkins researchers poke a hole in Apple’s encryption”, which describes the results of...
attackweekappleimessagethoughts
https://blog.cryptographyengineering.com/2013/03/12/attack-of-week-rc4-is-kind-of-broken-in/
Update: I’ve added a link to a page at Royal Holloway describing the new attack. Listen, if you’re using RC4 as your primary ciphersuite in...
attackweekkindbroken
https://blog.cryptographyengineering.com/2013/12/03/how-does-nsa-break-ssl/
A few weeks ago I wrote a long post about the NSA’s ‘BULLRUN’ project to subvert modern encryption standards. I had intended to come back to...
nsabreaksslthoughts