Alright! It's the second day of #realworldcrypto!
It starts strong with a MPC session!pic.twitter.com/MlGRxc4jw7
U tweetove putem weba ili aplikacija drugih proizvođača možete dodati podatke o lokaciji, kao što su grad ili točna lokacija. Povijest lokacija tweetova uvijek možete izbrisati. Saznajte više
They will continue to maintain their repository and want to include more frameworks in the future!
Recommendation is to use one of the actively maintained framework.
Also, for sensitive data the recommendation is to not use any of these open-source frameworks
#realworldcryptopic.twitter.com/2gfrTh92l7
Wow, I hope @durumcrustulum will continue his live tweeting! It is difficult to keep up with the pace of the talks.
Right now we have the QA session, with @LindellYehuda having a strong opinion about trusting the compilers.
Next up on stage @RealWorldCrypto is Yannick Sierra from @Apple crypto team, speaking about "Find My" and their privacy challenges!
#realworldcryptopic.twitter.com/n7ougQq9lh
Their main goal was to be able to find devices that are offline. Their idea is to use other nearby devices to do so. The first naive approach is to use Bluetooth and to broadcast an id...pic.twitter.com/KYCXCREvLY
But the problem they faced was that this is a massive loss of privacy as any passive listener could then track your devices!
#realworldcryptopic.twitter.com/SSIoorH5ik
The @Apple Security team had very challenging security and privacy goals there!
Even their own servers had to be oblivious of the user's location!
#realworldcryptopic.twitter.com/5xaqLSdndM
They also had many other requirements, from data usage to privacy of the finder devices, and even battery usage.
#realworldcrypto
Their final protocol is using a fancy ratcheted key rotation to have many public ids with a separate decryption key.
Here we go with their key setup.pic.twitter.com/SqOwhdscT7
Their protocol is using discretized time periods of 15 minutes, along with similarly short lived keys coming from their ratchet.
#realworldcryptopic.twitter.com/F0zOAgYFSi
It appears that they even have security proofs that they achieve their privacy and security goals! Cool stuff.
#realworldcrypto
Now, the question is obviously what are the finder devices doing with these broadcast short lived public keys! Here we go:pic.twitter.com/y6EQPXoU6Y
To find their device, the owner simply advances the ratchet to recover the private and thus the public keys of their device and can then query the required indexes (which are just the hashes of the public keys, Bitcoin's style
)
#realworldcryptopic.twitter.com/lpSTpIlGOg
#realworldcrypto
Here we go with the most crowded QA session we've seen so far @RealWorldCrypto!
Couldn't the timing of the broadcast uniquely determined the id of a device? By @hashbreaker. Not really covered.
What's up with collisions of the hashes? TBDpic.twitter.com/x9HE1AyE0u
Before the next talk, a quick announcement by the talk's speaker that there are new bounties to be cashed at http://rsa.cash for anything related to RSA based VDF!
#realworldcryptopic.twitter.com/Q5xKj9Weke
Ohhh. @durumcrustulum has resumed his live tweeting! I can finally rest
#realworldcrypto
Check it out for the rest of the day, I'll just comment on some of the talks here from now on.https://twitter.com/durumcrustulum/status/1215286500776140802?s=21 …
Yay, we now have @veorq on stage telling us how symmetric crypto is a pain because of the overly conservative security margin taken in round based crypto.
#realworldcryptopic.twitter.com/kSgnZlLcMq
@veorq has some strong opinions, but good arguments.
Which one is the best between these two ChaCha attacks? Both are impractical!
#realworldcryptopic.twitter.com/5dt6h7yaFp
@veorq has a nice practical impossibility theorem.
And even risked a bold "We'll never have a preimage attack against MD5".
#realworldcryptopic.twitter.com/n8o452k4Nz
@veorq proposes to reduce the rounds in many existing schemes, to prevent climat issue and improve performances.
#realworldcryptopic.twitter.com/f6c5ORKAxp
After the amazing artworks of ARM's talk yesterday, this morning's animated protocol slides by Apple, we now have an animated logo on a #realworldcrypto talk! Where do all these cryptographers find their graphic designer? I need one too!pic.twitter.com/Xla7tOVRjQ
This looks like negative results from the "Are certificate thumbprints unique?" talk at #realworldcrypto (even if technically it's a positive answer to their title, granted)! It's cool to see these in a conference such as @RealWorldCrypto, not only in CFAIL!pic.twitter.com/ZnXbVRtmGq
I am pretty sure these colors are not passing any WCAG checks
We should introduce Conference Content Accessibility Guidelines with proper color sets for slides
#realworldcryptopic.twitter.com/HooGTyU7oS
That being said, DiSE and distributed symmetric encryption schemes in general seem like a very interesting topic! I'm curious to dig into key generation details (like, do they have a DKG yet?)
#realworldcrypto
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.