I regard and respect Ariel as one of the foremost experts in zero-knowledge cryptography. That said, I believe he's deeply wrong here, and his take represents what I see a baffling contradiction in the way many cryptographers view quantum computing as a risk relative to other

Most projects have no record of why a dependency exists at all in a codebase. That’s why we built Dep Doc - a linting tool that enforces justification and documentation for every dependency in your project and makes their purpose and use explicit. github.com/p-11/dep-doc/t…

People love hash-based signatures b/c of their relatively conservative assumptions. But they're generally slower/bigger than lattice-based schemes. So small performance gains add up, especially for distributed networks. Proud and excited to continue to push this work forward so

Introducing SLH-DSA-B. An SLH-DSA variant that uses the BLAKE3 hash function. SLH-DSA-BLAKE3 outperforms SLH-DSA-SHAKE across all benchmarks. On x86 hardware, SLH-DSA-BLAKE3 outperforms SLH-DSA-SHA2 due to SIMD parallelism. Apple M3 ARM favours SHA2 due to hardware SHA

In this video, I explain in layman’s terms what a digital signature is, why we need post-quantum digital signatures, and I use our howbigistoobig website to compare these new signature schemes. If you’re unsure what all of this means, this video should help!

"When is Q-Day?" Or more specifically, "When will a quantum computer be able to steal funds by breaking ECDSA and EdDSA?" While this is a hotly debated topic that generates headlines, it is the wrong question for digital assets. Security does not depend on guessing the date. It