Cryptography – Noise

Book Review: The Business of Secrets

Bruce Schneier — Thu, 13 Nov 2025 12:09:39 +0000

The Business of Secrets: Adventures in Selling Encryption Around the World by Fred Kinch (May 24, 2024)

From the vantage point of today, it’s surreal reading about the commercial cryptography business in the 1970s. Nobody knew anything. The manufacturers didn’t know whether the cryptography they sold was any good. The customers didn’t know whether the crypto they bought was any good. Everyone pretended to know, thought they knew, or knew better than to even try to know.

The Business of Secrets is the self-published memoirs of Fred Kinch. He was founder and vice president of—mostly sales—at a US cryptographic hardware company called Datotek, from company’s founding in 1969 until 1982. It’s mostly a disjointed collection of stories about the difficulties of selling to governments worldwide, along with descriptions of the highs and (mostly) lows of foreign airlines, foreign hotels, and foreign travel in general. But it’s also about encryption...

Policy, privacy and post-quantum: anonymous credentials for everyone

Lena Heimberger — Thu, 30 Oct 2025 13:00:00 +0000

The world is adopting anonymous credentials for digital privacy, but these systems are vulnerable to quantum computers. This post explores the cryptographic challenges and promising research paths toward building new, quantum-resistant credentials from the ground up.

Signal’s Post-Quantum Cryptographic Implementation

Bruce Schneier — Wed, 29 Oct 2025 11:09:57 +0000

Signal has just rolled out its quantum-safe cryptographic implementation.

Ars Technica has a really good article with details:

Ultimately, the architects settled on a creative solution. Rather than bolt KEM onto the existing double ratchet, they allowed it to remain more or less the same as it had been. Then they used the new quantum-safe ratchet to implement a parallel secure messaging system.

Now, when the protocol encrypts a message, it sources encryption keys from both the classic Double Ratchet and the new ratchet. It then mixes the two keys together (using a cryptographic key derivation function) to get a new encryption key that has all of the security of the classical Double Ratchet but now has quantum security, too...

Keeping the Internet fast and secure: introducing Merkle Tree Certificates

Luke Valenta — Tue, 28 Oct 2025 13:00:00 +0000

Cloudflare is launching an experiment with Chrome to evaluate fast, scalable, and quantum-ready Merkle Tree Certificates, all without degrading performance or changing WebPKI trust relationships.

Part Four of The Kryptos Sculpture

Bruce Schneier — Fri, 24 Oct 2025 11:01:14 +0000

Two people found the solution. They used the power of research, not cryptanalysis, finding clues amongst the Sanborn papers at the Smithsonian’s Archives of American Art. This comes as an awkward time, as Sanborn is auctioning off the solution. T...

Improving the trustworthiness of Javascript on the Web

Michael Rosenberg — Thu, 16 Oct 2025 14:00:00 +0000

There's no way to audit a site’s client-side code as it changes, making it hard to trust sites that use cryptography. We preview a specification we co-authored that adds auditability to the web.

Securing today for the quantum future: WARP client now supports post-quantum cryptography (PQC)

Sharon Goldberg — Wed, 24 Sep 2025 13:00:00 +0000

To prepare for a future where powerful quantum computers come online, we've upgraded our WARP client with post-quantum cryptography.

You don’t need quantum hardware for post-quantum security

Luke Valenta — Fri, 19 Sep 2025 13:44:40 +0000

Post-quantum cryptography protects against quantum threats using today’s hardware. Quantum tech like QKD may sound appealing, but it isn’t necessary or sufficient to secure organizations.

Multi-Region keys: A new approach to key replication in AWS Payment Cryptography

Ruy Cavalcanti — Tue, 16 Sep 2025 19:44:18 +0000

In our previous blog post (Part 1 of our key replication series), Automatically replicate your card payment keys across AWS Regions, we explored an event-driven, serverless architecture using AWS PrivateLink to securely replicate card payment keys across AWS Regions. That solution demonstrated how to build a custom replication framework for payment cryptography keys. Based on […]

Message Signatures are now part of our Verified Bots Program, simplifying bot authentication

Mari Galicer — Tue, 01 Jul 2025 10:00:00 +0000

Bots can start authenticating to Cloudflare using public key cryptography, preventing them from being spoofed and allowing origins to have confidence in their identity.

Many voices, one community: Three themes from RSA Conference 2025

Anne Grahn — Thu, 05 Jun 2025 20:09:13 +0000

RSA Conference (RSAC) 2025 drew 730 speakers, 650 exhibitors, and 44,000 attendees from across the globe to the Moscone Center in San Francisco, California from April 28 through May 1. The keynote lineup was eclectic, with 37 presentations featuring speakers ranging from NBA Hall of Famer Earvin “Magic” Johnson to public and private-sector luminaries such as former […]

Forget IPs: using cryptography to verify bot and agent traffic

Thibault Meunier — Thu, 15 May 2025 13:00:00 +0000

Bots now browse like humans. We're proposing bots use cryptographic signatures so that website owners can verify their identity. Explanations and demonstration code can be found within the post.

How to manage migration of hsm1.medium CloudHSM clusters to hsm2m.medium

Roshith Alankandy — Fri, 09 May 2025 15:25:42 +0000

On August 20, 2024, we announced the general availability of the new AWS CloudHSM instance type hsm2m.medium (hsm2). This new type comes with additional features compared to the previous AWS CloudHSM instance type, hsm1.medium (hsm1), such as support for Federal Information Processing Standard (FIPS) 140-3 Level 3, the ability to run clusters in non-FIPS mode, […]

NCSC Guidance on “Advanced Cryptography”

Bruce Schneier — Fri, 02 May 2025 11:03:11 +0000

The UK’s National Cyber Security Centre just released its white paper on “Advanced Cryptography,” which it defines as “cryptographic techniques for processing encrypted data, providing enhanced functionality over and above that provided by traditional cryptography.” It includes things like homomorphic encryption, attribute-based encryption, zero-knowledge proofs, and secure multiparty computation.

It’s full of good advice. I especially appreciate this warning:

When deciding whether to use Advanced Cryptography, start with a clear articulation of the problem, and use that to guide the development of an appropriate solution. That is, you should not start with an Advanced Cryptography technique, and then attempt to fit the functionality it provides to the problem. ...

AIs as Trusted Third Parties

Bruce Schneier — Fri, 28 Mar 2025 11:01:08 +0000

This is a truly fascinating paper: “Trusted Machine Learning Models Unlock Private Inference for Problems Currently Infeasible with Cryptography.” The basic idea is that AIs can act as trusted third parties:

Abstract: We often interact with untrusted parties. Prioritization of privacy can limit the effectiveness of these interactions, as achieving certain goals necessitates sharing private data. Traditionally, addressing this challenge has involved either seeking trusted intermediaries or constructing cryptographic protocols that restrict how much data is revealed, such as multi-party computations or zero-knowledge proofs. While significant advances have been made in scaling cryptographic approaches, they remain limited in terms of the size and complexity of applications they can be used for. In this paper, we argue that capable machine learning models can fulfill the role of a trusted third party, thus enabling secure computations for applications that were previously infeasible. In particular, we describe Trusted Capable Model Environments (TCMEs) as an alternative approach for scaling secure computation, where capable machine learning model(s) interact under input/output constraints, with explicit information flow control and explicit statelessness. This approach aims to achieve a balance between privacy and computational efficiency, enabling private inference where classical cryptographic solutions are currently infeasible. We describe a number of use cases that are enabled by TCME, and show that even some simple classic cryptographic problems can already be solved with TCME. Finally, we outline current limitations and discuss the path forward in implementing them...

Open-sourcing OpenPubkey SSH (OPKSSH): integrating single sign-on with SSH

Ethan Heilman — Tue, 25 Mar 2025 13:00:00 +0000

OPKSSH (OpenPubkey SSH) is now open-sourced as part of the OpenPubkey project.

Prepping for post-quantum: a beginner’s guide to lattice cryptography

Christopher Patton — Fri, 21 Mar 2025 13:00:00 +0000

This post is a beginner's guide to lattices, the math at the heart of the transition to post-quantum (PQ) cryptography. It explains how to do lattice-based encryption and authentication from scratch.

NCSC Releases Post-Quantum Cryptography Timeline

Bruce Schneier — Fri, 21 Mar 2025 11:47:32 +0000

The UK’s National Computer Security Center (part of GCHQ) released a timeline—also see their blog post—for migration to quantum-computer-resistant cryptography. It even made The Guardian.

An early look at cryptographic watermarks for AI-generated content

Teresa Brooks-Mejia — Wed, 19 Mar 2025 13:00:00 +0000

It's hard to tell the difference between web content produced by humans and web content produced by AI. We're taking new approach to making AI content distinguishable without impacting performance.

Conventional cryptography is under threat. Upgrade to post-quantum cryptography with Cloudflare Zero Trust

Sharon Goldberg — Mon, 17 Mar 2025 13:00:00 +0000

We’re thrilled to announce that organizations can now protect their sensitive corporate network traffic against quantum threats by tunneling it through Cloudflare’s Zero Trust platform.