• Supersingular Isogeny Key Exchange for Not-Quite Beginners

    I recently read a great introductory paper on Supersingular Isogeny Diffie-Hellman (SIDH) by Craig Costello and wanted to summarize just the math of it (with some simplifications) for myself. Hopefully this summary is clear enough to also be useful to people who aren’t myself.

    The 3-isogeny graph for p=431
  • Better Encrypted Group Chat

    Making end-to-end encrypted group chat both efficient and secure is difficult. In this article, I explain why it’s so difficult and present a new protocol that attempts to solve this problem.

    Ratchet tree with new secrets
  • Siderophile: Expose your Crate's Unsafety

    This marks the release of siderophile—a tool for quantifying the unsafety of all the functions, expressions, methods, etc. in your Rust crate.

    Sample siderophile output
  • Confidential Transactions from Cryptographic Primitives

    Bitcoin today publicly reveals how much Bitcoin is sent in every transaction. Some cryptocurrencies wish to make these values private by default, but this comes with some mathematical challenges. We explain here what it takes to construct confidential transactions, assuming a basic background in cryptography and algebra.

    A Borromean ring signature of two rings