Bet: Quantum Won’t Break ECC by 2032, ML‑KEM
I’m making a bet with Filippo Valsorda that quantum computers won’t break ECC by 2029/2032, and (secondarily) that one version of ML-KEM will be de-standardized. I have loads of confidence in the former and little in the latter. I just like bets. https://t.co/5xWRRnvwP2
Iran Seeks Stablecoin Payments for Hormuz Transits
I’ve seen reports that Iran is demanding payment in stablecoins for Hormuz transits. Does anyone know the addresses or chain details?
Blockchain Still Alive: New Attack and Iran Toll Adoption
All semester I’ve been depressingly short on interesting news for my blockchains class, and I’ve been wondering if this field was moribund. This attack, along with the news that Iran is accepting Hormuz tolls in blockchain-based currencies, gives us something...
State Quantum Power Lies in Hidden Communications Exploitation
Ok I just want to add one thing. Folks, for state actors, the value of having a quantum computer is massively higher if you DON’T tell people you have a quantum computer. Exploiting Bitcoin is a parlor trick. Exploiting the world’s communications...
Quantum Crypto Threats Unlikely Within Our Lifetime
Neat paper on securing cryptocurrencies against quantum attacks. I want to stress that I am not convinced we have anything to worry about in my lifetime. This tweet might haunt me. https://t.co/d1i4reP93g
Generative AI Poised to Monetize Private Data Troves
I want to continue a bit on this subject, which (so far) I see very little concern about. There are vast stores of private data that we’ve built up in various places, including messaging apps. A real “killer app” for...
Moxie‑Meta AI Partnership Raises Privacy Fears
People keep asking me about Moxie’s partnership with Meta. They seem enthusiastic about the prospect of TEE-based AI inference integrated with confidential messengers. I guess I’m in the minority here, because this scares the pants off of me.
Meta Removes Instagram Encryption, Sparking User Frustration
Here’s a good article about Meta’s very frustrating decision to pull encryption out of Instagram. https://t.co/ajH18YCDZK
TEEs Won’t Secure Agentic AI’s Real-World Interactions
A lot of people think the solution to “private AIs” is to just TEEs. This is already the approach being deployed by Meta, Apple and Google. I think that’s important, but not really a solution. The problem is that for...
Meta Drops Instagram DM End‑to‑end Encryption
Meta appears to be reversing its strong stance on encryption. The first obvious casualty is that they’re abandoning and disabling end-to-end encryption in Instagram DMs.
EU Advances Message Scanning, Yet Dark Timeline Persists
The EU seems to be going in the right direction when it comes to mass message scanning. Unfortunately, the fact that this vote was necessary proves that we’re still in the dark timeline. https://t.co/Tci3GoLsPg
TikTok Denies “Controversial” Tech, Actually Uses End‑to‑end Encryption
TikTok announces that they’re not going to deploy “controversial privacy tech” that’s actually the same end-to-end encryption most other providers use to protect users’ DMs. https://t.co/INKzu9ku2z
Building Anonymous Credentials for Future Age Verification
New post on anonymous credentials and how to build them. All of this is in service on a longer future post on how these will fit into age verification systems. https://t.co/IqwlP9S6mv
Cloud Providers Can’t Certify TEE Key Secrecy
I heard an interesting anecdote about TEEs from some fintech people. They were trying to convince regulators that TEEs aren’t just “computers under their control”, so they asked cloud providers to certify that they’d never hand over the keys. Providers...
AI Finds FFmpeg Overflow; Patience Beats Complexity
My son showed me one of the overflow vulnerabilities found in FFmpeg by Google/Deepmind’s security AI agents. I was thinking about how hard these things are to find, and at least this one didn’t seem deep — just required enormous...
