Research (By Popularity)

How web pages can use a timing side channel to "scan" your local network.

The results of an EncFS security audit.

The difference between Computational Ability and Informational Ability

A birthday attack without knowing what the collision actually is.

Should the IV in CBC mode be kept secret?

Why you really ought to have a hidden volume, even if you don't need one.

Is security a locally-verifiable property of computation?

EOTP is a cryptographic One Time Password (OTP) protocol designed to provide a static encryption key across login sessions.

The results of an eCryptfs security audit.

Undetecting malware by making it look like a Potentially Unwanted Program (PUP).

A security audit of the ZeroBin pastebin.

Fixing a problem with the keyboard in an ASUS laptop.

An example of a web application (PHP) vulnerable to a race condition, and how to fix it.

Why we should support the development of browser-based crypto applications.

Use a memory corruption vulnerability to change an instance of class A into an instance of class B.

The FLUSH+RELOAD side-channel attack breaks the security of multi-user systems.

A look at the flow of data in web applications and how it can be tamed for security.

A tool to crack Synergy's homebrew cryptography.

Three properties necessary and sufficient for delivering code safely.

Giving authenticators an advantage over password crackers with cache.

An article on Bitcoin, centralization, and DDoS attacks.

Hacking the Bochs x86 CPU emulator.

Generating random numbers with paper coins.

PHP code for mitigating the BREACH attack.

A security audit of the Hash0 pastebin.

Security audit of the Private Encrypted File System (PEFS).

I sent a link through Skype and Microsoft visted it, confirming The H's claims.

My master's thesis, showing how concentration bounds can be derived from parallel repetition theorems for nonlocal games and interactive proofs.

A security audit of the gocryptfs encrypted filesystem.

Proving Gödel's second incompleteness theorem in a way that should be understandable to anyone who understands the proof that the halting problem is undecidable.

Attempting to show why P!=NP is hard to prove using hash functions.

Should web browser interfaces provide negative feedback when the connection is insecure?

Disabling CPU instructions to thwart ROP and other attacks.

My Black Hat USA 2016 talk about the Flush+Reload side channel.

An information disclosure vulnerability in Windows shared folders that lets you see what's in folers you can't access.