Posts
Privacy and Anonymity in Monero: Pedersen Commitments, Schnorr Signatures, Ring Signatures, ECDH etc
I have a written a blog post on how Monero (XMR) uses Cryptography (ECDH, Pedersen Commitments, Schnorr Signatures, Ring Signatures etc) to add privacy & anonymity on the blockchain https://risencrypto.github.io/Monero/ I have covered most of the cryptography used except for RangeProofs (Bulletproofs) which I plan to cover later in a …
Ciphered file
Hello everyone. Im relatively in the cryptography field and im facing a problem for wich i cant find a solution. I have recieved some homeworks at my university where they gave me a ciphered file and some clues to get the password. I think I have the pass or atleast …
Thoughts on "Serious Cryptography" Second Edition
I have seen that Dr. Aumasson has published the Second Edition to "Serious Cryptography". If you read the first and second editions what did you make of the second edition? Any sections that you learned something valuable the previous edition lacked in? Would love to hear your thoughts.
Attack on 16-round DES
Hey all, Recently I was reading the OG paper from Shamir and Biham regarding the attack and I am lost about of the details: If we craft pairs that are special and supposed to fit the 13-round characteristic starting at round 2, we deal only with 2\^13 plaintexts with their …
U.S. officials urge Americans to use encrypted apps amid unprecedented cyberattack
Is the non-abelian hidden subgroup problem well understood by the cryptographic community?
I've mentioned it to people and they look at me like I have three heads or something. The setup involves group G, and a non-commuting subgroup H, where H≤G. This naturally aligns with random matrices as matrix multiplication is order dependent. Let's say we have public matrix A and hidden …
Calling All Cybersecurity Professionals: Test DontSpoof Vault and Help Perfect It!
Can we attack ACME HTTP-01 challenges at the data layer?
I insert myself between two internet routers, reading and injecting data layer packets. It helps if I am near a CA server. For each IP address, I make an HTTP-01 ACME challenge. For each IP address, a response from a CA will get routed through my cable. I add the …
Imagining Private Airspaces for Bluesky
Making CTR mode commiting
CTR mode and it's derivatives(like GCM) has an issue with key commitment. An attacker can convince a user to decrypt a given plaintext under multiple keys. For CTR mode, this is trivial since CTR mode provides no authentication at all. For modes that use a polynomial hash to provide authenticated …