str4d 🛡️First day of #RealWorldCrypto! Looking forward to some great talks and great discussions.
Find me if you want to chat about cryptographic implementations, zero-knowledge proofs, Rust, or how great it would be if RWC went to New Zealand! 😁
Rowhammer-assisted attack on FrodoKEM's key generation enables a long-term public key to be permanently and undetectably poisoned.
The engineering to get reliable Rowhammer results within an 8ms keygen window is impressive! Requires access to the memory space in which keygen runs, but that is potentially relevant to deployments in cloud systems.
https://iacr.org/submit/files/slides/2023/rwc/rwc2023/100/slides.pptx
Meta: It would be really helpful if the RWC website provided linkable handles into the program so I could directly point to the abstracts. It does at least provide URLs to the talk slides, so that's what I'll link to where relevant.
This was a common thread at yesterday's #RealWorldPQC conference as well: hashing is dominating the costs of post-quantum algorithms! (c/f using classical elliptic-curve crypto, where the cost is usually dominated by point addition and scalar multiplication).
https://iacr.org/submit/files/slides/2023/rwc/rwc2023/68/slides.pdf
Apple describing their #PrivateRelay system (two-hop client IP privacy).
Tunnel establishment looks pretty similar to #Tor: build the first hop, extend new hops through earlier hops.
#I2P by comparision has single-shot tunnel building: it uses nested encryption to send a single message out, each hop stores its reply in its message layer and forwards it on, and the last hop is given a different tunnel to send the reply through to reach the client.
https://iacr.org/submit/files/slides/2023/rwc/rwc2023/IT_1/slides.pdf
Single-shot tunnel building is necessary because #I2P tunnels are unidirectional. Tunnel hops only route half of the communication traffic, making traffic analysis harder. It also means more peers are involved in round-trip traffic, which can create reliability issues.
For #PrivateRelay which is not trying to do any traffic hiding and prioritises performance, using bidirectional tunnels and interactive tunnel building makes sense.
Dick Smiths Fair Go Supporters