-
Show this thread -
Let’s do some math: that plus $410 plus an anonymous $200 on Slack plus $100 spillover from last challenge unlocks 4 challenges.
1 reply 1 retweet 11 likesShow this thread -
Presenting Cryptopals Set 8 challenge 2: a walkthrough of Pollard’s Kangaroo attack, for when you don’t have enough small subgroups to just CRT your way to key extraction: https://toadstyle.org/cryptopals/3e17c7b35fcf491d08c989081ed18c9a.txt …
1 reply 3 retweets 17 likesShow this thread -
Presenting Cryptopals Set 8 challenge 3: basic invalid curve attacks — the attack that recently broke JWT, and also several non-OpenSSL TLS libraries. https://toadstyle.org/cryptopals/a0833e607878a80fdc0808f889c721b1.txt …
1 reply 4 retweets 15 likesShow this thread -
Presenting Cryptopals Set 8 challenge 4: Single-Coordinate Ladders and Insecure Twists: puts the previous challenges together to launch invalid curve attacks on non-twist-secure curves. SO MUCH NEW HIPSTER TERMINOLOGY IS NOW YOURS. https://toadstyle.org/cryptopals/c53b90a3e9e753ddad56edbbd33838aa.txt …
1 reply 3 retweets 12 likesShow this thread -
And finally Cryptopals Set 8 challenge 5: forging keys to match signatures in RSA and ECDSA. https://toadstyle.org/cryptopals/809dccecda0e94ea588d66c12a1cf593.txt …
1 reply 4 retweets 13 likesShow this thread -
We are $790 away from unlocking challenge 6. Challenge 6 is a MONSTER problem. One of the 3 best in the entire series.
2 replies 3 retweets 6 likesShow this thread -
That was fast. Another $1000 in, another challenge unlocked.
1 reply 2 retweets 7 likesShow this thread
Presenting Cryptopals Set 8 challenge 6: KEY RECOVERY ON BIASED ECDSA NONCES. https://toadstyle.org/cryptopals/76f2e314809b2a34ce9ff0d2a08f7a7f.txt … Every DSA signature needs a random nonce, but not every DSA signature truly has one. With even a _bias_ in the nonce, a little linear algebra recovers keys.
-
-
We’re now $2490 from challenge 7. It’s another key recovery attack… but not on public key crypto.
4 replies 1 retweet 8 likesShow this thread -
Remember we gotta get this done by midnight EST or Sean burns the remaining challenges.
2 replies 1 retweet 2 likesShow this thread
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.