![Page 1: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/1.jpg)
Криптография сегодняJP Aumasson
![Page 2: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/2.jpg)
ABOUT MENOW
• Principal research engineer at Kudelski Security
• Applied crypto research, code reviews, infosec consulting, etc.
• Outreach @ Black Hat, Defcon, Zeronights, Troopers, etc.
BEFORE
• 2006-09: PhD in crypto, academic research and papers
• 2010-12: Cryptographer for Pay-TV systems at Nagravision
• BLAKE2, SipHash, organized PHC, Crypto Coding Standard
![Page 3: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/3.jpg)
![Page 4: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/4.jpg)
THIS TALK
What does it take to be a cryptographer in 2017?
![Page 5: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/5.jpg)
CRYPTOGRAPHER
?
![Page 6: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/6.jpg)
CLASSICAL ERA(-∞ – ~1960)
![Page 7: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/7.jpg)
CLASSICAL ERA
Just want to keep a message secret
Sometimes just for a few hours
Against simple attackers
"Easy"
![Page 8: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/8.jpg)
MODERN ERA(~1960 – 2010)
![Page 9: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/9.jpg)
MODERN ERA
Cryptography for computers: bits instead of letters, transistors instead of levers and rotors
![Page 10: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/10.jpg)
MODERN ERA
Public-key crypto: revolutionized crypto, enabled signature and key agreement (via RSA, DH, ECC)
![Page 11: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/11.jpg)
MODERN ERA
More than secrecy: crypto protects integrity, authenticity, availability, anonymity
![Page 12: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/12.jpg)
MODERN ERA
More than ciphers: encryption schemes, modes of operations, and protocols for various functionalities
![Page 13: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/13.jpg)
MODERN ERA
From craft to science: rigorous definitions and models, formalisms enabling security reductions/proofs
![Page 14: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/14.jpg)
MODERN ERA RESULTS
Plenty of ciphers and protocols…
Including many that we don’t use…
![Page 15: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/15.jpg)
MODERN ERA RESULTS
Plenty of algorithms…
Symmetric crypto schemes that will remain secure forever (AES, SHA-2/3)
![Page 16: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/16.jpg)
MODERN ERA RESULTS
Plenty of protocols…
Key agreement, MPC, ZK, e-voting, secret sharing, group/ring signatures,
distance bounding, identification, oblivious transfer, etc. etc.
![Page 17: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/17.jpg)
MODERN ERA RESULTS
Most ciphers & protocols not used
More motivated by research problems than by applications
Researchers sometimes too incentived to publish papers
![Page 18: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/18.jpg)
MODERN ERA LIMITATIONS?
![Page 19: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/19.jpg)
TODAY(2010 – …)
![Page 20: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/20.jpg)
A NEW WORLD
Keywords: mobile, cloud, IoT, Snowden
Software eating the world
Crypto a small part of infosec
![Page 21: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/21.jpg)
A NEW CRYPTO?
Can no longer be elitist and isolated
Needs to catch up with reality
![Page 22: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/22.jpg)
NEW NEEDS
Usability; of user interfaces, APIs
Greater focus on privacy, anonymity
Crypto as a component of a system
![Page 23: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/23.jpg)
NEW NEEDS
Do a better job at teaching and documenting crypto
![Page 24: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/24.jpg)
NEW NEEDS
Focus less on building blocks, build real systems addressing real use cases
Show the code or it didn’t happen
![Page 25: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/25.jpg)
HOW CAN WE ADAPT?
![Page 26: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/26.jpg)
TODAY’S CRYPTOGRAPHY
Multidisciplinary: coding, software engineering, reverse engineering, etc.
Fewer hard skills, more soft skills
![Page 27: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/27.jpg)
—Moti Yung, RWC 2017
“When a software engineer says it's impossible, that really just means it's
cryptographically interesting.”
![Page 28: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/28.jpg)
Now more popular than CRYPTO
![Page 29: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/29.jpg)
SOME CRYPTO FROM THE REAL WORLD…
![Page 30: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/30.jpg)
![Page 31: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/31.jpg)
SIGNAL PROTOCOL
Key agreement X3DH, double ratchet
![Page 33: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/33.jpg)
MULTI-DEVICE / GROUP E2E
Secure sync, trust management, calls, …
![Page 34: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/34.jpg)
STEALTH VPN
Noise + identity hiding, formally verified
![Page 35: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/35.jpg)
BLOCKCHAIN PROTOCOLS
![Page 36: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/36.jpg)
![Page 39: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/39.jpg)
BOTTOM LINE
Innovation comes from industry, open-source communities, who are
directly exposed to the real problems
Academia follows and provides deeper analysis and proofs
![Page 40: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/40.jpg)
EXCEPTION
![Page 41: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/41.jpg)
CONCLUSION
As cryptographers, we need to…
• Go out of our comfort zone, learn about technologies that use crypto
• Acknowledge that research can no longer be disconnected from users
![Page 42: Криптография - CTCrypt · ABOUT ME NOW • Principal research engineer at Kudelski Security • Applied crypto research, code reviews, infosec consulting, etc. • Outreach](https://reader033.vdocuments.us/reader033/viewer/2022041622/5e3ffb69474831655901b6ca/html5/thumbnails/42.jpg)
СПАСИБО