cryptologie.net

cryptography, security, and random thoughts

Hey! I'm David, cofounder of zkSecurity, research advisor at Archetype, and author of the Real-World Cryptography book. I was previously a cryptography architect of Mina at O(1) Labs, the security lead for Libra/Diem at Facebook, and a security engineer at the Cryptography Services of NCC Group. Welcome to my blog about cryptography, security, and other related topics.

← back to all posts

◦

TLS 1.3 is out!

2018-08-11 blog

TLS 1.3 has been released as RFC 8446. It took 28 drafts and more than 4 years since draft 0 to come out. Cloudflare has a long blog post about it. Some questions about the deployment of 1.3:

Will we see a fast deployment of the protocol? It seems like browsers are ready, but web servers will have to follow.
Who will use 0-RTT? I’m expecting the big players to use it (largely because they’ve been requesting it) but what about the small ones?
Are we going to see vulnerabilities in the protocol? It seems highly unlikely, TLS 1.2 itself (with AES-GCM) has remained solid for more than 10 years.
Are we going to see vulnerabilities in the implementations? We will see about that. If anything happens, I’m expecting it to happen around 0-RTT, PSKs and key exports. But let’s hope that libraries have learned their lessons.
Is BearSSL going to implement TLS 1.3? It sounds like it.

suggested reads:

→ The 9 Lives of Bleichenbacher's CAT: New Cache ATtacks on TLS Implementations • blog

→ Updates on How to Backdoor Diffie-Hellman • blog

→ Keeping up with TLS 1.3 • blog

← back to all posts blog • 2018-08-11

currently reading:

TLS 1.3 is out!

08-11 blog

recent posts:

New cryptologie.net

07-20 blog

Weaponizing AI Assistants: With Their Permission

07-20 blog

What are Schwartz-Zippel circuits? How do they relate to iterative constraint systems?

05-29 blog

Short Note On Montgomery Reduction: Why Operating Modulo b?

05-24 blog

Still confused by Plonk's permutation?

03-13 blog

Partial evaluations and linearization

03-12 blog

The trap of the top-down approach

03-07 blog

My company is looking for interns

02-25 blog

Vlogging attempts

02-16 blog

I like whiteboards

10-17 blog

↓ scroll

📖 my book

Real-World Cryptography is available from Manning Publications.

A practical guide to applied cryptography for developers and security professionals.

🎙️ my podcast

Two And A Half Coins on Spotify.

Discussing cryptocurrencies, databases, banking, and distributed systems.

📺 my youtube

Cryptography videos on YouTube.

Video explanations of cryptographic concepts and security topics.

currently reading:

TLS 1.3 is out!

08-11 blog

recent posts:

New cryptologie.net

07-20 blog

Weaponizing AI Assistants: With Their Permission

07-20 blog

What are Schwartz-Zippel circuits? How do they relate to iterative constraint systems?

05-29 blog

Short Note On Montgomery Reduction: Why Operating Modulo b?

05-24 blog

Still confused by Plonk's permutation?

03-13 blog

📖 my book

Real-World Cryptography is available from Manning Publications.

A practical guide to applied cryptography for developers and security professionals.

🎙️ my podcast

Two And A Half Coins on Spotify.

Discussing cryptocurrencies, databases, banking, and distributed systems.

📺 my youtube

Cryptography videos on YouTube.

Video explanations of cryptographic concepts and security topics.