david wong

Hey! I'm David, cofounder of zkSecurity and the author of the Real-World Cryptography book. I was previously a crypto architect at O(1) Labs (working on the Mina cryptocurrency), before that I was the security lead for Diem (formerly Libra) at Novi (Facebook), and a security consultant for the Cryptography Services of NCC Group. This is my blog about cryptography and security and other related topics that I find interesting.

Real World Crypto: debriefing posted January 2016

There is no day 4, this is over... And I've got a ton to work on/read about/catch up with.

But first! I'm spending the week end in San Francisco before flying to Austin, if anyone wants to hang out in SF feel free to contact me on twitter =)

(and if you work for Dropbox, feel free to invite me to eat at your one michelin star cafetaria)

Take-home message

  • Tor's security seems a bit shaky to me
  • QUIC crypto will die. Just look at tls 1.3
  • TLS 1.3 is still a clusterfuck
  • Lots of stuff to break in SSE and PPE
  • Intel is doing something really cool with SGX
  • The Juniper paper is going to be a big deal
  • The BREACH improvement is going to be a big deal

Papers to read

First, a bunch of slides are already available through the real world crypto webpage. And I've been taking notes every day: day1, day2, day3.

Now here's my to read list from the important talks:

And bonus, here are some paper that have nothing to do with RWC but that I still want to read right now:

Next conventions to attend

I actually have no idea about that. You?

Well done! You've reached the end of my post. Now you can leave a comment or read something else.


leave a comment...