Posts
cr.yp.to: 2026.06.30: Understanding lattice risks
Arti 2.5.0 released: Stable Counter Galois Onion | Tor Project
Tor has fixed their long standing tagging attack, improved forward security, and added sufficient authentication. See [the Arti 2.5 stable release announcement](https://blog.torproject.org/arti_2_5_0_released/) too, as well as [2025/583](https://eprint.iacr.org/2025/583), [2025/2017](https://eprint.iacr.org/2025/2017), and [tor spec 359](https://spec.torproject.org/proposals/359-cgo-redux.html). *"Jean Paul Degabriele, Alessandro Melloni, Jean-Pierre Münch, and Martijn Stam have a design that they're calling Counter Galois …
zkGolf: golf zero-knowledge circuits, verified in Lean
Chat Control keeps getting revived, there's another vote tomorrow Monday 29th
cr.yp.to: 2026.06.19: EuroQCI feedback
(Re) Introducing Stoffel, Your Private by Design Teammate
More performant secretstream, a bad idea?
Libsodiums secretstream is great right up until you need to encrypt a 1 TB file in a browser. It ratchets in order, one chunk at a time, single thread. Not performant enough. And hard to resume if job stops for some reason. Here's an alternative, and what I'd love torn …
question
how know more techniques than that * Stream Cipher * Dynamic S-Box (Substitution Box) * Ciphertext Feedback (Autokey Mechanism) * Data-Dependent Rotation / Variable Start Point * Hash-Based Keystream Generation (PRNG) * Non-Linear Bitwise and Arithmetic Operations
SPNA ciphers...
So wanted to check in with you guys to see if anyone can point out any underlying faults in a SPNA cipher strcuture. Base idea is simple. SPN based like AES-256 however algebraic. No lookup tables. No state machines. No branching. No memory. Only AND, NOT and XOR logic and …