Profile picture
iang @iang_fc
, 7 tweets, 3 min read Read on Twitter
10 years ago I annoyed the entire crypto-supply industry:

Hypothesis #1 -- The One True Cipher Suite

iang.org/ssl/h1_the_one… 1/7
The One True Cipher Suite was born of watching projects and groups wallow in the mire of complexity, as doubt caused teams to add multiple algorithms- a complexity that easily doubled the cost of the protocol with consequent knock-on effects & costs 2/7
The One True Cipher Suite was widely ridiculed in crypto and standards circles. Developers and standards groups like the IETF just could not let go of crypto agility. This sacred cow led the TLS group to field something like 200 standard suites 3/7
Now, NIST has announced that AES as a single standard algorithm is worth $250 billion economic benefit over 20 years
nvlpubs.nist.gov/nistpubs/gcr/2…
nist.gov/news-events/ne…
4/7
h/t to Bruce Schneier, who also said:

“I have no idea how to even begin to assess the quality of the study and its conclusions -- it's all in the 150-page report, though -- but I do like the pretty block diagram of AES on the report's cover.”

5/7
One good suite of ales allows agility within the protocol to be dropped. Entirely. Instead, upgrade the entire protocol to an entirely new suite, every 7 years.

Crypto-agility was a sacred cow that should have been killed years ago
6/7
In another footnote, we of the Cryptix team supported the AES project because we knew it was the way forward. Raif built the Java test suite and others wrote and deployed contender algorithms. 7/7
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to iang
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @iang_fc see all

Profile picture
David Chaum: imagine 35 and a half years ago...
The NSA was trying to block all public research in cryptography. This was disturbing to graduate students in Berkeley, the home of free speech.
...in the front row were all the NSA people, only listing addresses as Maryland.

"By paying $100 to come to this conference you have become a member of the International Association for Cryptological Research."
Read 8 tweets

Related threads

Profile picture
After two days of dealing with them in my replies, my overwhelming impression is that there are significantly fewer gamergaters than there were a few years ago, but the things they say have not gotten any smarter.
A typical example - unusually colorful metaphors, stronger than average spelling & grammar for this set...but equivalent in content to “ur soooo dumb hurrr hurrrr”

Never any substance. A screenshot of a tweet reply to me from @AmericanMinear that says, “That’s because you’re a moron with the observational skills of a cinder block at the bottom of the Mariana Trench.”
I suppose “never” isn’t quite true. Sometimes, one of them trots out a tired argument that is just as untrue and/or irrelevant now as it was 4 years ago when it was first proffered. Here are some examples:
Read 60 tweets
Profile picture
1/ In a paper written 17 years ago, @NickSzabo4 sheds light on why Trusted Third Parties (TTPs) are massive security holes.

17 years later, the paper is still more relevant than ever: nakamotoinstitute.org/trusted-third-…

Let's dissect what it all means:
2/ As a refresher, here are just a few ex. of trusted third parties as security holes:

MapleChange bit.ly/2OY73vr
Facebook nyti.ms/2NQQNf9
DNS bit.ly/2Svap7n
Yahoo bit.ly/2yIVuOD
Verizon bit.ly/2P1jOFs
Equifax cnnmon.ie/2zegzjn
3/ In the context of cryptography, what is a TTP and how does it work?

A TTP is an entity facilitating interactions between parties who don't trust each other but 'trust' the entity. All communication between the parties is reviewed and managed by the TTP.
Read 24 tweets
Profile picture
0/ Having trouble staying on top of all the latest in the world of #crypto and #blockchain? I've got you covered. Well, at least for the last 24 hours or so 💁‍♂️

Let's get this thread going shall we.
1/ 📝 @DPRating published the September edition of its #GitHub Audit, rating more than 200 #crypto and #blockchain projects.

Teams that ranked disproportionately well included @Raiden_Network [ $RDN ], @NulsService [ $NULS ], @ParticlProject [ $PART ], and @POANetwork [ $POA ].
2/ ♻️ @PowerLedger_io [ $POWR ] introduced Asset Germination Events (AGEs), furthering the utility of its native #crypto token.

AGEs will allow people to invest in and co-own energy assets. More details to come via a Friday AMA. medium.com/power-ledger/p…
Read 24 tweets
Profile picture
I want to tell you guys a story about how it all started #10YearsALearner #10YALpodcast
In 2008, I worked as a PR and marketing executive at an event and image consulting company in VI and I was treated well. But I wanted more. I wanted a bigger challenge so I told Kely dear friend and inspiration @iamtheOsagie #10YearsALearner #10YAL
@iamtheOsagie 2 weeks later.. I got a call from @iamtheOsagie and that was the beginning of an adventure…

O: Hey Godwin. Are you still bored?
Me: lol… You have something for me?
O: Would you like to manage an artist?
me: Who?
O: His name is MI
me: ok… send music

#10YearsALearner
Read 66 tweets
Profile picture
1/ Get ready for a predictable #crypto pattern: in the coming months, we will see an increasing number of #Bitcoin maximalists tormenting “altcoin investors” for straying from the mother ship.
2/ The maximalist drum will get louder as we go deeper into the bear market, with #bitcoin falling less than most other coins, and its dominance index growing. coinmarketcap.com/charts/#domina…
3/ #Bitcoin is the benchmark after all, the market beta of crypto, with most everything oscillating at a higher amplitude than $BTC.
Read 18 tweets
Profile picture
The exchange game is a brutal one. None of the #crypto exchanges I "grew up" with are even in the top 10 anymore, few are in the top 25. coinmarketcap.com/rankings/excha…
For example, @bittrex #28, @Poloniex #38 -- never used Bitfinex or that would've been my top 10-er.
As people pointed out in the comments, wash trading has always been a problem in #crypto.

The "Blockchain Transparency Institute" developed a new system "to provide better transparency for the crypto sphere on true exchange volumes." blockchaintransparency.org/reports (h/t @MGilm0re)
Read 4 tweets

Trending hashtags

#MaryCassatt #AI #ignorant #Christian #10YearsALearner #OldTestament #NutShellReprt #shepherd #Numerai #stablecoin #Christians #ThePatriotTimes #TreeofLifeSynogogue #scriptures #bitcoin #Plasma #eternal #H #WhenLambo #SanFrancisco #tech #ignorance #LedgerLive #cryptoassets #Bible

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!