All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

rscrypto v0.4.0: Runtime Verification of Constant-Time Cryptographic Behavior

By

loadingalias

15h ago· 12 min readenInsight
Bagel score 100 of 100
100/100
Golden Brown
Bagelometer

Master baker tier. Every paragraph earns its place on the tray.

Score100TypeanalysisSentimentneutral

Summary

The article discusses the release of rscrypto v0.4.0, a Rust cryptography library that emphasizes runtime verification of constant-time behavior rather than relying on assumptions about source code being constant-time. It explains how cryptographic code can appear constant-time in source but become non-constant-time after compilation due to compiler optimizations, target-specific decisions, or refactoring. The library implements actual runtime checks to verify that cryptographic operations execute in constant time, addressing a critical gap in cryptographic engineering where developers often assume safety based on source code review alone.

Key quotes

· 5 pulled
Every cryptography library says it's secure and performant.
Very few can explain how that security is validated and how that performance is proven after every change.
One of the easiest mistakes in cryptographic engineering is assuming code is constant-time because it looks constant-time.
The source looks branchless. The review looks clean. The helper uses the right equality function. Then an optimization, a target specific lowering decision, an tiny refactor, or a new fast path changes the binary that actually runs.
The maxim 'Don't roll your own crypto' exists for this reason.
Snippet from the RSS feed
Every cryptography library says it's secure and performant. Very few can explain how that security...

You might also wanna read

GitHub - loadingalias/rscrypto: Rust crypto w/ zero default deps: BLAKE3, Ed25519/X25519, hashes, MACs, KDFs, AEADs, and checksums w/ full SIMD/ASM acceleration

github.com·7d ago

Dynamic Borrow-Checking in a Toy Programming Language: Implementing Rust-like Memory Safety Without Static Types

This article presents a demonstration of a toy programming language that implements borrow-checking without static type-checking. The langua

scattered-thoughts.net·1mo ago

LLVM Adds Constant-Time Support for Protecting Cryptographic Code

blog.trailofbits.com·6mo ago

Rust Merkle Tree Library with Configurable Storage and Hash Functions

A Rust implementation of Merkle trees with configurable storage backends and hash functions. The library supports fixed depth and incrementa

github.com·7mo ago

openring-rs: A Rust-Based Webring Generator for Static Site Generators

openring-rs is a Rust-based tool for generating webrings from Atom/RSS feeds, allowing users to populate templates with articles from those

github.com·6mo ago

Advanced Borrow-Checker Concepts in Rust Programming: Exploring New Reference Types

This article explores advanced concepts in Rust programming language's borrow-checker system, proposing new reference types and algebraic st

nadrieril.github.io·5mo ago