Advertisement · 728 × 90

Posts by Taylor Hornby

The Joy of Cryptography The Joy of Cryptography

The Joy of Cryptography!

joyofcryptography.com

1 month ago 6 1 1 0
A copy of Cryptography Engineering by Ferguson, Schneier, and Kohno with a sticker on it reading “Warning! Memetic Hazard. Artifact contains virulent information capable of infecting human thought. Artifact cannot be accessed without proper security protocols active at all times. ALL EXPERIMENTATION PROHIBITED. SCP#: pending. Class: Keter. Omega Threat: Y [ ] N [X]. WARNING: MAC-Then-Encrypt Considered Harmful”

A copy of Cryptography Engineering by Ferguson, Schneier, and Kohno with a sticker on it reading “Warning! Memetic Hazard. Artifact contains virulent information capable of infecting human thought. Artifact cannot be accessed without proper security protocols active at all times. ALL EXPERIMENTATION PROHIBITED. SCP#: pending. Class: Keter. Omega Threat: Y [ ] N [X]. WARNING: MAC-Then-Encrypt Considered Harmful”

After a stern scolding from a cryptographer colleague, my copy of his followup now sports this warning label

1 month ago 23 4 2 0

Holy fuck, enough of this.

If you're in Arizona, contact your lawmakers.

Allowing shitty regions to dictate the law for the entire Internet is going to ruin the one thing we still (kinda) have left.

Fight this.

2 months ago 1 1 1 0

Also it's incredibly obvious, and has been from the beginning, that lawmakers are going to latch onto this hard as a way to erode privacy.

Safety is almost always an excuse.

2 months ago 0 1 0 0
Preview
Carelessness versus craftsmanship in cryptography Two popular AES libraries (aes-js and pyaes) provide dangerous default IVs that lead to key/IV reuse vulnerabilities affecting thousands of projects. One maintainer dismissed the issue, while strongSwan’s maintainer exemplified proper security response by comprehensively fixing the vulnerability in their VPN management tool.

"aes-js and pyaes provide a default IV in their AES-CTR API"

*screams*

blog.trailofbits.com/2026/02/18/carelessness-...

2 months ago 13 6 3 2
Preview
Verification Theatre: False Assurance in Formally Verified Cryptographic Libraries Every formally verified system embeds a verification boundary: the interface between code with machine-checked proofs and code that is trusted without them. We study what happens when this boundary is...

MASSIVE rewrite of my Verification Theatre paper now on ePrint with added:

- Three new bugs that are *inside* libcrux's verified core,
- Comparison to Amazon's verified LibCrypto components,
- Many additional sections, discussion and details!

Huge rewrite! Go read it! eprint.iacr.org/2026/192

2 months ago 7 3 0 0
Video

The showed us cute missing dogs & we consented to turning our doorbell cameras into a mass human tracking system.

Mark my words, Ring's Search Party will become the next Flock.

Only instead of just being sketchy cameras installed in parking lots, it will be everywhere. That's their play.

2 months ago 173 82 17 14
Post image

He came alive 😱

2 months ago 2161 687 8 4

Guys if you see observers thank them. There’s real stress and burnout in the ranks right now. People understand they are waking up every day to chase and monitor federal thugs who can execute them. But they keep doing it nonstop to protect their neighbors

2 months ago 3021 491 45 12
Post image

What is to give light must endure burning.

— Viktor Frankl

3 months ago 377 54 4 1
Advertisement

Seems unfair that you only get to use the bouncy slide to get off a plane when things have gone wrong. The bouncy slide should be a treat they give to the best passengers who did the flight correctly.

3 months ago 3368 735 42 13
Post image

The pink people on this website just need to all get together and stop playing prisoner’s dilemma games.

3 months ago 0 0 0 0

yeah. let’s serialize pointer offsets, send them over the network to other people, then fix them up when they get back. what’s the worst that could happen. live a little

3 months ago 35 2 3 0
candle on wood

candle on wood

Happy solstice! ❄️🌲

3 months ago 944 53 32 4
Preview
Lessons Learned from a Typosquatted Audit Report - Least Authority We identified and addressed a typosquatting issue promptly, but the incident reinforced why authenticity and provenance matter deeply in security reporting.

We recently discovered an unauthorized, modified version of one of our audit reports shared online via a deceptive URL. While we quickly resolved the issue, it served as a reminder of the importance of authenticity and provenance in security reporting. leastauthority.com/blog/lessons...

4 months ago 1 1 0 0

I think it’s pretty clear at this point that one of the main impacts of LLMs is to disrupt thinking: to make it so that far too many people never properly learn how to do it, and then to control the output so there are thoughts that people never learn how to think.

4 months ago 1795 499 32 37
An example, here asking to recreate in LaTeX the definition of a pseudorandom number generator

An example, here asking to recreate in LaTeX the definition of a pseudorandom number generator

In case you aren't already aware of one of the nerdiest, nich-est online games: TeXnique, where the goal is to type LaTeX formulae as quickly as possible. texnique.xyz

It is "fun."

4 months ago 93 21 2 7
Preview
URGENT: Stop Alberta's Government From Overriding Charter Rights of Trans Youth Healthcare is a right, protected by evidence, compassion, and core Canadian values.

Alberta: Please speak up against Bill 9 and the Notwithstanding Clause while the legislation is being debated in the Legislature.

Here's two initiatives that send messages to elected officials & will keep you informed of next steps:

transactionalberta.ca
savethecharter.ca

#ableg #abpoli #CanPoli

5 months ago 38 31 1 1
Preview
Hallucinate (2025 Version) Listen to Hallucinate (2025 Version) by Taylor Hornby #np on #SoundCloud

soundcloud.com/earthrise5/h...

5 months ago 0 0 0 0
Advertisement
Preview
The Brightest Light Listen to The Brightest Light by Taylor Hornby #np on #SoundCloud

If you like future-bass-ish electronic music, I just posted a new track! soundcloud.com/earthrise5/t...

5 months ago 1 0 0 0

First drum lesson tonight. Haven’t taken a music lesson in uhhh… 20 years?? Looking forward to sucking at this.

As the saying goes, “Sucking at something is the first step toward being sorta good at something”-Jake the dog

5 months ago 227 5 18 1
Preview
FEP-521a: Consider base-64-url, not base-58-btc, as the required codec Converting to/from base-256 (raw "binary" octets) and base-N is easy to do in constant-time if N is a power of 2. See: RFC 4648 for power-of-2 codecs. 58 isn't a power of 2, which makes implementing ...

If you ever wondered,

"What does it take to implement a base-256 <-> base-B codec in constant-time when B isn't a power of 2?"

Well, I have some oddly specific good news for you: codeberg.org/fediverse/fe...

5 months ago 18 2 1 0

i hate it when something is described as "inscrutable." you have no idea the types of things im able to scrute

5 months ago 522 133 14 6

> In honor of spooky month, share a 4 word horror story that only someone in your profession would understand

Circuit missing a gate.

6 months ago 8 1 2 0
Post image Post image

>ducted fans
>im a turbofan
>her: eww i want jet
>turbofans are jets
>i am a fucking jet aircraft

I will be alone forever

6 months ago 50 1 2 0

These people are evil. Never stop saying so. Don’t be intimidated into shutting up.

6 months ago 11686 4094 315 141

You have never been cyberd until you've been cyberd by a cyber security professional

6 months ago 72 5 10 0
To Come Home To Yourself 

May all that is unforgiven in you
Be released.

May your fears yield
Their deepest tranquilities.

May all that is unlived in you
Blossom into a future
Graced with love.

To Come Home To Yourself May all that is unforgiven in you Be released. May your fears yield Their deepest tranquilities. May all that is unlived in you Blossom into a future Graced with love.

Friend gave me a John O’Donohue book recently. It’s quite good.

“To Come Home To Yourself”

6 months ago 742 86 97 22
an illustration that shows a caterpillar, then a moth, then The Mothman

text: GIVE YOURSELF TIMEA

an illustration that shows a caterpillar, then a moth, then The Mothman text: GIVE YOURSELF TIMEA

Be the Mothman you wish to see in the world

6 months ago 2752 929 13 12
Advertisement