asanso.eth
@asanso
Followers
6K
Following
16K
Media
615
Statuses
15K
Researcher @ethereum, #cryptography addicted, in elliptic we trust. Opinions are my own
Basel, Switzerland
Joined March 2009
Excited to share our new paper, unleashed in collaboration with @DimitriKoshelev (kudos to him for the brilliant idea behind it!)
1
14
56
Nice thread from IOTA's developer @hus_qy . tl'dr of his statement: IOTA is a different place now both at technical and personal level. If true KUDOS!.My take: Everyone deserves a second chance.
@asanso @pobserver2 @TheBiostarfly @benediktbuenz I am an IOTA developer so I want to take the chance to respond to what you just wrote. You are 100% correct with your assessment. IOTA was a huge shit show. The technology was broken (not just the cryptographic part) and the way the project treated critics was shameful.
6
58
344
Towards practical post quantum Single Secret Leader Election (SSLE) - Part 1
167
168
204
Dear bug bounty hunters do not forget the Eth2 bug bounties program Looking forward some of your great submissions. .
42
113
222
Happy and proud to finally see published "In search of CurveSwap: Measuring elliptic curve implementations in the wild." written by @ltv511 @grittygrease @nadiaheninger and myself ( appearing in @IEEEEUROSP in April.)
1
43
117
2
49
112
Introducing Bandersnatch: a fast elliptic curve built over the BLS12-381 scalar field: joint work with @SimonMasson2.
2
20
90
@rafbarberio @nonnusquam @raistolo @AlfonsoFuggetta @MarcoCantamessa la mia era una domanda seria non un "attacco ad hominem". Detto cio si documenti lei e non io. Se ancora non l'ha visto io faccio ricerca accademica sulla crittografia (e la matematica) delle blockchain ed ovviamente non sono certo contro. Quindi non so chi si deve documentare. .
7
4
82
So you wanna learn IQ Cryptography-IQC (aka cryptography based on class groups of imaginary quadratic orders). Wait what? Ok let's slow down.Why should I want to learn this in a first place?It turns out that it seems that last year was the Reinassence of IQC.Some key papers 1/14.
1
31
80
Should you want to start learning the beautiful subject of elliptic curves, this is the best book ever!
4
16
78
Wohoo. Our paper with @luca_defeo @SimonMasson2 and C. Petit "Verifiable Delay Functions from Supersingular Isogenies and Pairings" has been accepted to #Asiacrypt . Blog post in #VDF
11
18
73
New paper with @ThomasDecru and @MainoLuciano . We used Kani's Lemma (the same used to break SIDH) to build a purely algebraic (weak) quantum-resistant VDF. Mind the "toward" in the title though.There are some open problems that make the implementation of it challenging 1/n
8
14
67
The Curious Case of WebCrypto Diffie-Hellman on Firefox - Small Subgroups Key Recovery Attack on DH
1
35
70
TIL I will never be able to catch up with Zero Knowledge literature. This stuff is going soooooo fast at the moment.
7
14
70
This is part of the "arsenal" I use to (try to) hunt for crypto and web vulnerabilities. Between the others there is :.* The tangled web by @lcamtuf .* Serious Cryptography by @veorq .* Bullet Proof SSL And TLS by @ivanristic 1/n
4
10
59
CSRF in Facebook/Dropbox - "Mallory added a file using Dropbox" -
1
34
60
CVE-2017-7781/CVE-2017-10176:Issue with elliptic curve addition in mixed Jacobian-affine coordinates in Firefox/Java
1
53
58
aaaaand it happened!.
1
5
53
"Cryptanalysis of an oblivious PRF fromsupersingular isogenies" Joint work with @andreavbasso @merzsp @kutasp and Christophe Petit . Poc code in
#ePrint Cryptanalysis of an oblivious PRF from supersingular isogenies: A Basso, P Kutas, S Merz, C Petit, A Sanso
3
16
52
joint work with @SimonMasson2 @zhenfei_zhang
Introducing Bandersnatch: a fast elliptic curve built over the BLS12-381 scalar field: joint work with @SimonMasson2.
4
12
51
So it seems thet yours truly will try to defend his phd very soon. Wish me luck
5
0
49
Someone managed to break RSA-14 with a quantum computer!!! via PQC-forum
7
6
44
Posted on eprint a modest paper (Family of embedded curves for BLS) preview basically shows how to build embedded curves (à la JubJub/Bandersnatch) having GLV endomorphism (à la Bandersnatch) providing general formulas derived from the BLS curve’s seed.
2
8
39
LKF: Few years ago I exploited the same identical Facebook endpoint ("View as"). This is also a continuation of another bug I discovered earlier where I proved that FB stores email address of non FB users!! cc @matthew_d_green
0
10
37
I was a semi-retired bug hunter until I have rediscovered the joy of finding vulnerabilities with the Eth2 bug bounties I'll blog about some of them in the following weeks.
0
2
41
Bella serata ieri al @ilcryptopub_ . Grazie a tutti le persone che hanno partecipato.
Liveeeeeeeee 🚨🚨🚨🚨🚨.
6
1
36
#OpenSSL just published details about #Raccoon attack great work @ic0nz1 @lambdafu @NimrodAviram @jurajsomorovsky !!.
1
30
38
OH wow and I just spotted I got my 3rd nomination for Best Cryptographic Attack (but I am afraid I am not going to win also this time). Raccoon Attack it deserves way more and it is probably going to win! cc @jurajsomorovsky @ic0nz1 :)
Enjoy the @PwnieAwards 2020 nominations and thanks @PwnieAwards crew to deliver this also in this painful weird year!.
3
1
33
@ProfLopalco @Tg3web @RobertoBurioni Io lo dico oramai da un po. Se non vi mettete daccordo fra voi esperti noi poveri mortali si impazzisce.
1
1
35
Today is the day (Do not forget kids :D).
12/8にSeverityがHIGHの脆弱性FIXが出る予定とのこと。. 『This release will be made available on Tuesday 8th December 2020 between 1300-1700 UTC.』. Forthcoming OpenSSL Release.
1
10
32
Just posted on eprint a really modest result (but I had really fun writing it): Breaking the decisional Diffie-Hellman problem in totally non-maximal imaginary quadratic orders. Preview ,
2
4
35
We just revised the paper adding result of the 67 bits attack. Took 1.89 days . attack succeeded!!! took 163869.15s .lM = 2, eM = 169, queries = 13.recovered PV part took 53727.83s.recovered QV part took 55706.49s.recovered PV+QV part OK took 54427.47s.second part took 7.36s.
"Cryptanalysis of an oblivious PRF fromsupersingular isogenies" Joint work with @andreavbasso @merzsp @kutasp and Christophe Petit . Poc code in
0
6
30
When quantum computer will be a reality the first number I will factor will be b66fbfdafbac2fd82eb13dc44fa170ffc9f7c7b51d55b2144cc2257b29df3f62b421b1580753f304a671ff8b55dd8abfb53d31aba0ad742f21857acf814af3f1e126d771a61eca54e62bfdb585c311b058e9cd3faab758a5e28968496ec1dd51d0355a. .
2
4
29
So you wanna learn supersingular isogeny crypto thread.1/5 If you are into reading papers then go for (via @durumcrustulum and @0x64616E69656C ) by @luca_defeo ,original #SIDH paper MSR improvement to SIDH
1
12
27
Just submitted a cryptographic bug report affecting a well known product after a loooooooong hiatus.
1
1
25
Side channel timing attacks against (EC)DSA in RSA BSAFE CVE-2019-3739/CVE-2019-3740 - Project Wycheproof is the AFL for Cryptography .
0
17
28
What has happened to @antisnatchor and @marver here is a security's researcher nightmare.
Following responsible disclosure practices, we recently discovered a WebUSB vulnerability in Chrome that affected the entire ecosystem of FIDO U2F authenticators, now fixed in Chrome 67. The bounty we received was donated to @GirlsWhoCode. Details here:
0
18
25
@DucasLeo @chelseakomlo @_henrycase @FredericJacobs @CryptoBits_eu also it seems someone found an error on the estimate
0
5
26
You are "into" #EllipticCurve (or even a professional algebraic geometer) you might really want to read this book: "Diophantus and Diophantine equations". Tl;dr Diophantus has the undeserved reputation that he has limited himself to finding a single solution. 1/3
2
7
25
Current status: writing a blog post about two different #OAuth related vulnerabilities that led to a persistent XSRF on #Kubernetes Dashboard. Stay tuned. .
0
1
26
TIL @EllipticKiwi 's book Mathematics of Public Key Cryptography contains by far the best introduction on isogenies written in any book. Little caveat (not author's fault) isogeny based cryptography has grown sooo much in the latest few years!!.
So you wanna learn supersingular isogeny crypto thread.1/5 If you are into reading papers then go for (via @durumcrustulum and @0x64616E69656C ) by @luca_defeo ,original #SIDH paper MSR improvement to SIDH
1
1
25
Random Friday thought: We are almost reaching the one-year mark since SIDH's death. Isogenyland has been quite a ride ever since. I don't think any other field in cryptography has been as exciting in the past year. Enjoy the ride.
1
3
24
The return of Torus Based Cryptography: Whisk and Curdleproof in the target group
1
6
23
Verifiable Delay Functions from Supersingular Isogenies and Pairings with @luca_defeo @SimonMasson2 and Christophe Petit
1
11
25
Reminder to self: the Quadratic Reciprocity Law is the weirdest and powerfull Theorem in math
4
4
23
Asiacrypt accepted papers are online. Great time for isogenies including one of the best paper awards!!.
0
5
23
Professore La prego si attenga a fare il virologo. Anche se io un po' di matematica la mastico (probabilmente anche piu di Lei) non e' che mi metto a discutere con Lei di teoria matematica delle epidemie.
@AlfonsoFuggetta @magellano83 Partita persa. Prima i no-vax, adesso i no-trax. Stesso atteggiamento mentale, stessa arroganza, stessa irresponsaible pericolosità.
2
2
21
Well I guess the birds that stop in my garden can’t complain about accomodation 😹
1
0
21
PSA: (english translation) I am officially an external PhD Candidate @ruhrunibochum. Good luck to me (it might take a while to complete) and thanks @ruhrunibochum's stuff for being so great!
3
0
21
So here is the sage code for the isogenies VDF Kudos to @SimonMasson2 ! Feel free to comment/constribute/extend/port to any language! cc @luca_defeo.
0
8
19
