05 Dec 2024

frood, an Alpine initramfs NAS

09 Oct 2024

Accumulated Test Vectors

25 Sep 2024

The FIPS Compliance of HKDF

21 Aug 2024

Let’s All Agree to Use Seeds as ML-KEM Keys

17 Jul 2024

age Plugins

08 Jul 2024

Geomys, a blueprint for a sustainable open source maintenance firm

26 Jun 2024

XAES-256-GCM

06 Apr 2024

My Maintenance Policy

14 Feb 2024

PINs for Cryptography with Hardware Secure Elements

30 Jan 2024

Post-quantum Cryptography for the Go Ecosystem

07 Nov 2023

Enough Polynomials and Linear Algebra to Implement Kyber

24 Oct 2023

Why We Don’t Generate Elliptic Curves Every Day

05 Oct 2023

Announcing the $12k NIST Elliptic Curves Seeds Bounty

06 Jul 2023

I want XAES-256-GCM/11

11 Apr 2023

A Cryptographic Near Miss

23 Mar 2023

Planning Go 1.21 Cryptography Work

03 Mar 2023

Avoid The Randomness From The Sky

08 Jan 2023

ssh whoami.filippo.io

04 Jan 2023

Go 1.20 Cryptography

28 Dec 2022

My age+YubiKeys Password Management Solution

09 Nov 2022

A GC-Friendly Go Interning Cache

02 Nov 2022

Why Did the OpenSSL Punycode Vulnerability Happen

26 Oct 2022

The Reciprocal Value of Access to Maintainers

29 Sep 2022

age and Authenticated Encryption

12 Sep 2022

Planning Go 1.20 Cryptography Work

04 Aug 2022

A Wide Reduction Trick

29 Jul 2022

KEMs and Post-Quantum age

16 Sep 2021

Automatic Cipher Suite Ordering in crypto/tls

10 Jan 2021

The Most Backdoor-Looking Bug I’ve Ever Seen

18 Dec 2020

Re-Deriving the edwards25519 Decoding Formulas

08 Oct 2020

Reconstruct Instead of Validating

08 Sep 2020

NaCl Is Not a High-Level API

22 Aug 2020

Registries Considered Harmful

19 Jul 2020

Replace PGP With an HTTPS Form

04 Jul 2020

DSA Is Past Its Prime

27 May 2020

Is X25519 Associative? Sometimes!

24 Apr 2020

OpenSSH 8.2 Just Works with U2F/FIDO2 Security Keys

28 Feb 2020

New Crypto in Go 1.14

10 Feb 2020

The Linux CSPRNG Is Now Good!

06 Jul 2019

Hello World, and OpenPGP Is Broken