We Found Bugs in Cryspen's Verified Code
Cryspen said they'd be 'very interested' if someone found a bug in their verified code. We found three.
12 min readFrom the lab.
Insights from our audit practice, software releases, and applied cryptography research. Updated whenever we publish.
Verifpal Verifies Signal Across Three Messages
Verifpal 0.31.2 ships a major overhaul to active attacker analysis, finally enabling full verification of Signal's three-message protocol.
7 min readOn the Promises of 'High-Assurance' Cryptography
A case study on Cryspen's libcrux exposing the gap between formal verification marketing and engineering reality.
10 min readAnnouncing Cedarcrypt: Applied Cryptography in the Mediterranean
We're thrilled to announce Cedarcrypt, a new applied cryptography summer school and conference.
2 min readIntroducing Magicall: Encrypted video calls that actually work
We're launching Magicall, a privacy-first video calling platform built by cryptographers.
7 min readKyber-K2SO 1.0: Now Implementing ML-KEM
Kyber-K2SO version 1.0 upgrades from Kyber v3 to ML-KEM, the NIST-standardized post-quantum key encapsulation mechanism.
4 min read