Carsten Baum
LightNews LightNews
banner
cryptocarsten.bsky.social
Carsten Baum
@cryptocarsten.bsky.social
300 followers 100 following 93 posts
Professor at DTU Compute. Passionate about Cryptography, Hummus and coffee.
Posts Replies Media Videos
Reposted by Carsten Baum
cgravert.bsky.social
Denmark is best in EU in getting workers back into jobs (twice the average rate). They also do tons of RCTs to find out what works and apply behavior science. Can’t say it’s causal, but it’s an interesting correlation at least.
bentesorgenfrey.bsky.social Bente Sorgenfrey @bentesorgenfrey.bsky.social · Jun 10
I 2024 var Danmark bedst i #EU til at få ledige i job. 40,8 pct. af de ledige i et givent kvartal, kom i job i det efterfølgende kvartal, hvilket er væsentligt over EU-gennemsnittet på 24,2 pct. Det er 14. år i træk, at Danmark er EU-mestre i at få ledige i job #dkpol www.ae.dk/analyse/2025...
Danmark er EU-mestre for 14. år i træk: Bedst til at få ledige i job
Gennemsnitligt 40,8 pct. af de ledige i et givent kvartal kom i job i det efterfølgende kvartal i 2024. Det er den højeste andel i EU – for 14. år i træk. Danmark er også bedst til at få langtidsledig...
www.ae.dk
June 10, 2025 at 7:12 PM
Reposted by Carsten Baum
durumcrustulum.com
Apple announces that TLS client connections in version 26+ will be using hybrid PQ X25519MLKEM768 by default

support.apple.com/en-us/122756
Prepare your network for quantum-secure encryption in TLS - Apple Support
Learn about quantum-secure encryption in TLS and how to check if your organization's web servers are ready.
support.apple.com
June 9, 2025 at 10:34 PM
cryptocarsten.bsky.social
The 7th workshop on Privacy Preserving Machine Learning will take place on August 17, 2025 (Sunday), as an affiliated event of the 45th CRYPTO 2025 conference.
June 4, 2025 at 7:19 AM
Reposted by Carsten Baum
benadida.com
Ahem.
New York Times headline "Crypto investor charged with kidnapping and torturing man for weeks" Xkcd #538, comparing crypto nerd imagination of breaking RSA vs reality of torturing the password holder.
May 24, 2025 at 10:09 PM
Reposted by Carsten Baum
claudiorlandi.bsky.social
Save the date! The next NordiCrypt will take place on Monday June 30th in Aarhus. We will start around 10:00. More details soon at sites.google.com/view/nordicr...
NordiCrypt - NordiCrypt Summer 2025
Venue: The next NordiCrypt will take place at Aarhus University on Monday June 30th. More details under "Location". Schedule: Scientific Program from 10:00 to 16:00/17:00 ish. Dinner at 18:00. Final p...
sites.google.com
May 22, 2025 at 6:22 AM
cryptocarsten.bsky.social
Oh wow, this is really great work. Recent results on PCGs allowed much more efficient MPC preprocessing (among other things) using somewhat new assumptions. Apparently, these assumptions are too strong.

Congratulations to the authors on their IACR grant slam of breaks :)
eprint.ing.bot ePrint Updates @eprint.ing.bot · May 19
Practical cryptanalysis of pseudorandom correlation generators based on quasi-Abelian syndrome decoding (Charles Bouillaguet, Claire Delaplace, Mickaël Hamdad, Damien Vergnaud) ia.cr/2025/892
Abstract. Quasi-Abelian Syndrome Decoding (QA-SD) is a recently in- troduced generalization of Ring-LPN that uses multivariate polynomials rings. As opposed to Ring-LPN, it enables the use of small finite field such as GF(3) and GF(4). It was introduced by Bombar et al (Crypto 2023) in order to obtain pseudorandom correlation generators for Beaver triples over small fields. This theoretical work was turned into a concrete and efficient protocol called F4OLEage by Bombar et al. (Asiacrypt 2024) that allows several parties to generate Beaver triples over GF(2). We propose efficient algorithms to solve the decoding problem underlying the QA-SD assumption. We observe that it reduce to a sparse multivariate polynomial interpolation problem over a small finite field where the adversary only has access to random evaluation points, a blind spot in the otherwise rich landscape of sparse multivariate interpolation. We develop new algorithms for this problem: using simple techniques we interpolate polynomials with up to two monomials. By sending the problem to the field of complex numbers and using convex optimization techniques inspired by the field of “compressed sensing”, we can interpolate polynomials with more terms. This enables us to break in practice parameters proposed by Bombar et al. at Crypto’23 and Asiacrypt’24 as well as Li et al. at Eurocrypt’25 (IACR flagship conferences Grand Slam). In the case of the F4OLEage protocol, our implementation recovers all the secrets in a few hours with probability 60%. This not only invalidates the security proofs, but it yields real-life privacy attacks against multiparty protocols using the Beaver triples generated by the broken pseudorandom correlation generators. Image showing part 2 of abstract.
May 20, 2025 at 4:02 AM
Reposted by Carsten Baum
malb.bsky.social
This is cool heimberger.xyz/oprfs.html
PQ-OPRF table
heimberger.xyz
May 8, 2025 at 7:52 AM
cryptocarsten.bsky.social
Never thought I'd participate in making a whole scientific conference dance the Macarena.
Yet here we are.
May 7, 2025 at 8:30 AM
cryptocarsten.bsky.social
Oops :)
icascudo.bsky.social Ignacio Cascudo @icascudo.bsky.social · May 6
Don't go over time!! Or do!
May 6, 2025 at 9:40 PM
Reposted by Carsten Baum
proofnerd.bsky.social
Our paper on attacking concurrent MPC implementations is finally on eprint 🎉
(And @schollster.bsky.social will present it at S&P 2025!)

A summary 🧵
eprint.ing.bot ePrint Updates @eprint.ing.bot · May 5
Rushing at SPDZ: On the Practical Security of Malicious MPC Implementations (Alexander Kyster, Frederik Huss Nielsen, Sabine Oechsner, Peter Scholl) ia.cr/2025/789
Abstract. Secure multi-party computation (MPC) enables parties to compute a function over private inputs while maintaining confidentiality. Although MPC has advanced significantly and attracts a growing industry interest, open-source implementations are still at an early stage, with no production-ready code and a poor understanding of their actual security guarantees. In this work, we study the real-world security of modern MPC implementations, focusing on the SPDZ protocol (Damgård et al., CRYPTO 2012, ESORICS 2013), which provides security against malicious adversaries when all-but-one of the participants may be corrupted. We identify a novel type of MAC key leakage in the MAC check protocol of SPDZ, which can be exploited in concurrent, multi-threaded settings, compromising output integrity and, in some cases, input privacy. In our analysis of three SPDZ implementations (MP-SPDZ, SCALE-MAMBA, and FRESCO), two are vulnerable to this attack, while we also uncover further issues and vulnerabilities with all implementations. We propose mitigation strategies and some recommendations for researchers, developers and users, which we hope can bring more awareness to these issues and avoid them reoccurring in future. Image showing part 2 of abstract.
May 5, 2025 at 6:42 AM
Reposted by Carsten Baum
xotoxot.bsky.social
I'm one of the signers of this open letter to the Commission asking to ensure that civil society, human rights lawyerd and academics get properly involved in the preparation of a Technology Roadmap on encryption. edri.org/our-work/tec...
Technical experts call on Commissioner Virkkunen for a seat on the table of the European Commission’s Technology Roadmap on encryption - European Digital Rights (EDRi)
EDRi, in a group of 39 organisations and 43 experts, published an open letter today to call for a scientific evidence-based approach to encryption.
edri.org
May 5, 2025 at 3:04 PM
Reposted by Carsten Baum
smartcryptology.bsky.social
Satellite collision detection via MPC is now faster...

conference.sdo.esoc.esa.int/proceedings/...

#cryptography
conference.sdo.esoc.esa.int
May 5, 2025 at 7:42 AM
cryptocarsten.bsky.social
It takes a certain academic age and amount of accomplishments that allows you to use Comic Sans AND get away with it.
May 5, 2025 at 7:44 AM
cryptocarsten.bsky.social
Don't forget to submit your most hilarious talk, musical performance, general announcement or recent result to the Eurocrypt 2025 Rump Session!
May 4, 2025 at 11:40 AM
cryptocarsten.bsky.social
Next week I'll be at IACR Eurocrypt in Madrid. Let's have a chat if you're also around!
May 2, 2025 at 1:27 PM
cryptocarsten.bsky.social
ZK deployed in get another use case. Yay!
May 2, 2025 at 9:35 AM
Reposted by Carsten Baum
durumcrustulum.com
"To help foster a safer, more secure environment for everyone, we will also open source our ZKP technology to other wallets and online services."
May 1, 2025 at 11:12 PM
cryptocarsten.bsky.social
Given the behavior of the current US administration, it will be very hard to tell truth from joke news this April 1st.
April 1, 2025 at 5:49 AM
cryptocarsten.bsky.social
Sure. Great idea. Planning conferences in the US.

So, who despite US Americans and Russians do you think will go at this point?
rwc.iacr.org Real World Crypto Symposium @rwc.iacr.org · Mar 28
Big announcement: RWC 2027 in Seattle! April 5-7 subject to board approval.
March 29, 2025 at 11:48 AM
cryptocarsten.bsky.social
I guess we need to update our security games?
March 26, 2025 at 1:46 PM
cryptocarsten.bsky.social
The Trump admin communicates on Signal and added a journalist to a war planning chat group.

Despite the obvious trainwreck that this news is (but not surprising), I'd like to thank them all for some extra material I'll teach tomorrow in a course about private communication :)
March 24, 2025 at 8:18 PM
Reposted by Carsten Baum
malb.bsky.social
Update on crypto.iacr.org/2025/
Given recent instances of US visa holders and residents being detained or deported by US immigration authorities, we understand that some members of our community may not feel safe traveling to the US for Crypto this year. We want to assure everyone that we will provide the option to present and attend remotely.
March 21, 2025 at 7:26 PM
cryptocarsten.bsky.social
Today's Nordicrypt is going poetic :)
March 21, 2025 at 2:49 PM
cryptocarsten.bsky.social
Martin and Kenny are organizing a meeting to discuss the impact of recent political events on both our research and our community. If you're at Eurocrypt this year, consider attending!
malb.bsky.social Martin R. Albrecht @malb.bsky.social · Mar 11
Together with @kennyog.bsky.social we're organising a meeting at Eurocrypt to discuss how the, let's say, "dramatically changing political landscape" affects cryptography and our community, both domestically in some countries but also internationally eurocrypt.iacr.org/2025/communi...
Wednesday, May 7, 14:30-16:00 (Room TBD): Cryptography in a Changing World: Navigating Geopolitical Uncertainty and Security Risks Join us to discuss what we as a community can and should do in light of a dramatically changing political landscape, both domestically for some of us and internationally for all of us. We don't have ideas to pitch to you, but we think it will be useful to meet and to start a discussion. For more information: Martin Albrecht and Kenny Paterson.
March 11, 2025 at 11:29 AM