Chris Fenner
@chrisfenner.bsky.social
The goal of getting the crypto right is for all your security bugs to be boring
January 15, 2026 at 2:38 PM
The goal of getting the crypto right is for all your security bugs to be boring
I think the correct term for this is “end-to-middle-encrypted”
January 13, 2026 at 9:28 PM
I think the correct term for this is “end-to-middle-encrypted”
THOUGHTS IN PLAINTEXT
January 13, 2026 at 2:51 PM
THOUGHTS IN PLAINTEXT
Great news everyone, we found a way to 1,000,000x the number of GPUs everyone needs to buy from Jensen
January 13, 2026 at 2:35 PM
Great news everyone, we found a way to 1,000,000x the number of GPUs everyone needs to buy from Jensen
As a user, I’m not impressed by E2E encryption where the other end is a device the hosting provider can spend $1000 to impersonate (tee.fail), also doesn’t the confidential VM need to transmit the prompt to e.g. six dozen GPUs?
TEE.fail: Breaking Trusted Execution Environments via DDR5 Memory Bus Interposition
Breaking Trusted Execution Environments via DDR5 Memory Bus Interposition
tee.fail
January 13, 2026 at 2:28 PM
As a user, I’m not impressed by E2E encryption where the other end is a device the hosting provider can spend $1000 to impersonate (tee.fail), also doesn’t the confidential VM need to transmit the prompt to e.g. six dozen GPUs?
fell out of the [PQ large] tree hitting every branch on the way down
January 8, 2026 at 10:26 PM
fell out of the [PQ large] tree hitting every branch on the way down
I’d like to pressure test the hypothesis that your only two choices are “email level security” and “if a motivated state actor can defeat it you failed”
January 7, 2026 at 9:52 AM
I’d like to pressure test the hypothesis that your only two choices are “email level security” and “if a motivated state actor can defeat it you failed”
Another thing that already works exactly like email is email
January 7, 2026 at 2:38 AM
Another thing that already works exactly like email is email
Yeah, I under-specified that part since the post was getting long. It depends on the hardware layout. You can “share” a TPM bus between a BMC and a CPU using a multiplexer, or you can have one device proxy the traffic for another.
January 4, 2026 at 4:42 PM
Yeah, I under-specified that part since the post was getting long. It depends on the hardware layout. You can “share” a TPM bus between a BMC and a CPU using a multiplexer, or you can have one device proxy the traffic for another.
How have you liked working with No Starch as a writer?
October 15, 2024 at 4:24 AM
How have you liked working with No Starch as a writer?