| Tweetovi |
| Steven Goldfeder proslijedio/la je tweet | ||
|
Offchain Labs
@OffchainLabs
|
23. sij |
|
Censorship attacks are a risk for many smart contracts including Arbitrum rollup, optimistic rollup, and others that depend on getting TXs accepted within a deadline. @EdFelten deep dives into the types of attacks and how you can deal with them medium.com/offchainlabs/f…
|
||
|
|
||
| Steven Goldfeder proslijedio/la je tweet | ||
|
Andrew Miller 🦓🦓🦓
@socrates1024
|
16. sij |
|
Baby SNARK (do do dodo dodo)!
A tutorial on the simplest SNARK, its implementation, and most importantly its soundness proof.
Comes with code
github.com/initc3/babySNA…
and writeup
github.com/initc3/babySNA…
@sanket1729 @ZhangYe46023266
still rough around the edges, but pls enjoy
|
||
|
|
||
| Steven Goldfeder proslijedio/la je tweet | ||
|
Arvind Narayanan
@random_walker
|
10. sij |
|
We have a number of concerning findings but the most problematic is that there are 17 websites that simultaneously allow SMS both for password recovery and as the second factor for authentication. Given the ease of SIM swaps, that’s zero-factor auth, not two-factor auth.
|
||
|
|
||
| Steven Goldfeder proslijedio/la je tweet | ||
|
Rosario Gennaro
@rgennaro67
|
9. sij |
|
WSJ story on my work on perceptual hash wsj.com/articles/new-y…
|
||
|
|
||
|
Steven Goldfeder
@sgoldfed
|
9. sij |
|
Blake3 was just announced at #RealWorldCrypto. Sounds cool!
crates.io/crates/blake3
|
||
|
|
||
|
Steven Goldfeder
@sgoldfed
|
9. sij |
|
Makes sense. And to be clear I’m really not trying to give you a hard time. I have faith in you much more than I do some of your competitors, and most of them just don’t have your expertise.
I view you as the de-facto leader in this space which is why I’m asking.
|
||
|
|
||
|
Steven Goldfeder
@sgoldfed
|
9. sij |
|
Makes sense. Is it also available to non-customers who want to audit (e.g. a research group without the budget to become a customer)?
And for both customers and non-customers does the current NDA allow for publishing findings?
|
||
|
|
||
|
Steven Goldfeder
@sgoldfed
|
9. sij |
|
To be honest I’m worried much more about other companies who don’t have the internal expertise that you have at Unbound.
But all code is susceptible to bugs, particularly complex cryptographic code, and I think the industry needs leadership on this issue.
|
||
|
|
||
|
Steven Goldfeder
@sgoldfed
|
9. sij |
|
Agree this is non-trivial but to make this concrete rather than talking about a hypothetical NDA:
What is Unbound’s policy? Is it publicly documented that code is available to researchers for review? And what does your NDA say?
|
||
|
|
||
|
Steven Goldfeder
@sgoldfed
|
9. sij |
|
Yeah I don’t either put much value in FIPS validation but I do put a lot more value in having code available for bored grad students to review
|
||
|
|
||
|
Steven Goldfeder
@sgoldfed
|
9. sij |
|
Anyway I do agree that there is a massive difference. But I don’t think hardware vs. software is the key differentiator here.
I’m aware of several companies selling cryptographic *software*for which
— no paper or spec exists
— code is not made available to researchers
|
||
|
|
||
|
Steven Goldfeder
@sgoldfed
|
9. sij |
|
Available under NDA is a start but depending on what the NDA says it could keep away the most relevant researchers who
1. are working on similar technologies and don’t want to get IP entangled
2. Are motivated by publishing their findings
|
||
|
|
||
|
Steven Goldfeder
@sgoldfed
|
9. sij |
|
Agreed but would you agree that all cryptographic software should be publicly available for inspection too (not necessarily permissively licensed)?
|
||
|
|
||
| Steven Goldfeder proslijedio/la je tweet | ||
|
Rosario Gennaro
@rgennaro67
|
8. sij |
|
Twenty years ago I wrote a paper on how to use ElGamal encryption for electronic voting. It remains my most cited paper. @RealWorldCrypto talk today on how Moscow’s administrative elections messed it all up. Great material for undergrad crypto class
|
||
|
|
||
| Steven Goldfeder proslijedio/la je tweet | ||
|
ΔLΞXΔNDΞR
@0x_____________
|
6. pro |
|
|
||
|
|
||
| Steven Goldfeder proslijedio/la je tweet | ||
|
Harry Kalodner
@hkalodner
|
6. pro |
|
The current implementation just supports staking in Eth, but at some point we’re gonna open that up to staking in any agreed upon token as well. Definitely no ARB token. We want the system to echance Ethereum and be as low friction as possible.
|
||
|
|
||
| Steven Goldfeder proslijedio/la je tweet | ||
|
evan.ethereum.eth
@evan_van_ness
|
29. stu |
|
Much clicked
* @jadler0 Eth2 relayers & fee markets
* @golemproject build w gWASM
* @sigp_io Beacon Fuzz
* @OffchainLabs multiround interactive rollup
* @Rocket_Pool staking pool beta 2
* @rDAI_dao mission
* inject @ConnextNetwork state channels into browsers w @WalletConnect twitter.com/evan_van_ness/…
|
||
|
|
||
| Steven Goldfeder proslijedio/la je tweet | ||
|
IACR
@IACR_News
|
28. stu |
|
#ePrint Efficient FPGA Implementations of LowMC and Picnic: D Kales, S Ramacher, C Rechberger, R Walch, M Werner ia.cr/2019/1368
|
||
|
|
||
| Steven Goldfeder proslijedio/la je tweet | ||
|
ethereum.network
@EthereumNetw
|
25. stu |
|
Arbitrum Rollup is an off-chain protocol that is managed by an on-chain Ethereum contract.
@OffchainLabs
@EdFelten
medium.com/offchainlabs/h…
|
||
|
|
||
| Steven Goldfeder proslijedio/la je tweet | ||
|
evan.ethereum.eth
@evan_van_ness
|
25. stu |
|
Just pressed send on the latest Week in Ethereum News:
weekinethereumnews.com/week-in-eth-ne…
|
||
|
|
||