Deirdre Connolly¹ ²
Next up, 'Compositional Formal Verification of SNARKs with ArkLib', presented by Quang Dao
#realworldcrypto
The core of a SNARK is an interactive argument, usually with Fiat-Shamir slapped on top
#realworldcrypto
large models are now pretty good at LEAN, this is helpful to arklib; the AI can prove faster than Quang!
#realworldcrypto
Q: Why are there so many Fiat-Shamir instantiation mistakes out there?
A: We lack to right tooling to auto catch these issues; must be secure in the spec first
#realworldcrypto
Next up, 'TEE.fail: Breaking Trusted Execution Environments via Memory Bus Interposition', presented by Christina Garman and Daniel Genkin
#realworldcrypto
A scheme originally intended for disk encryption, not for RAM
#realworldcrypto
"Please don't crash, please don't crash—"
#realworldcrypto
It worked!
#realworldcrypto
Protections were removed to improve performance at customer demand 😭
#realworldcrypto
Q: You believe these protections only got removed bc of performance?
A: Yes I do, we talked to the engineers, they were so upset and repeatedly saying "I told you so" etc
#realworldcrypto
Next up, 'Migrating a Silicon Root of Trust to Post-Quantum Crypto', presented by Jade Philipoom and Hien Pham
#realworldcrypto
Goal is to PQ secure boot chain
#realworldcrypto
Q: Masking?
A: Software masking techniques; random probing model, trying to find the best combo of masking gadgets systematically
#realworldcrypto
Next up, 'Chypnosis: Undervolting-based Static Side-channel Attacks', presented by Shahin Tajik
#realworldcrypto
AMD security advisories 😏
#realworldcrypto
Next up, 'Kerckhoff's Principle in Practice: Addressing Security by Obscurity in Secure Hardware', presented by Jan Jancar
#realworldcrypto
Next up, 'Encryption in the microarchitectural world', presented by Ping-Lun Wang
#realworldcrypto
