Joe Birr-Pixton

no longer on twitter

@Stagecoach_East NI changes come in on 6th of April, not 1st January. And they do not justify a 115% price increase.

Unexpected NI cost changes have forced us to end a fare promotion where Longstanton was part of the Town Zone for Flexi and Group tickets. Customers who bought but did not activate tickets before 31/12 can call 0345 2418000 to upgrade for free. Bar Hill will stay in the City Zone

Speaker Announcement! 🚨 Dive into Graviola. Learn how it boosts security and performance with verified assembly—and more cryptography innovations in Rust. Joseph Birr-Pixton (@jpixton) presents "Graviola: Fast, High-Assurance Cryptography for Rust" at #rustnationuk25! Get your ticket: buff.ly/3y02Grr

@amvandyk the goal is to force friction for use cases that are a bad idea. the opposite of that looks like QT's `ignoreSslErrors` API which was just involved in CVE-2024-51774.

Rustls disable cert verification implementation is scary 😟 Why couldn’t it be more simpler to just allow dangerous config with a warning. You have to define no verification just to do what it is supposed to do?

google reports 25% of code is now AI-generated. also google:

Cryptography & Security Newsletter: pyrtls is a new project that provides Python bindings for rustls, a modern, Rust-based TLS implementation. buff.ly/4hk5XDJ

rustls outperforms OpenSSL and BoringSSL. Security and performance: pick two! Both handshake latency and throughput were better in the latest version of rustls compared to latest OpenSSL/BoringSSL. See blog post for more details, below.

@lcamtuf any VCs want to fund this? it's web scale

I'm sick tired of people pushing their "memory-safe language" agenda when a viable solution is within reach.

After almost 6 years, I revived my blog to publish an overview of all the open source stuff I worked on last month. Updates from rustls, Hickory DNS, rustup, pyrtls, KumoMTA, Quinn, Askama, tokio, and instant-acme.

@Paolo565 The Augustus gloop school of cryptography

There are projects that are using all of these at the same time 💯: OpenSSL + rustls (with various certificate verifiers) + ring + aws-lc-rs + RustCrypto

.@euro_rust responsible for decimating Vienna's local stocks of Squeezie Krabbe

Looking forward to this!

@veorq honestly? still catching up with widely-deployed things for TLS at this point: next up is QUIC header protection, then HPKE for ECH, then ML-KEM

@jpixton Wdyt of adding BLAKE3, no native silicon/intrinsics but parallelism

Just released a new Rust crate: "Graviola" -- fast and easy to build cryptography, aimed at use with rustls crates.io/crates/graviola

Introducing rustls-wolfcrypt-provider: wolfCrypt for Rustls dlvr.it/TDdR5w

pyrtls is a new set of Python bindings for rustls, providing a secure, modern alternative to the ssl module. I wanted to allow more people to benefit from the work we've done to build a better alternative to OpenSSL-backed TLS, and figured Python users might be interested.

@pingiun_ @fasterthanlime RSI-based dispatch

@gcouprie vibe check

@Siobhan_Poppy i guess you missed the other cafe/bar?

If you go to Northstowe, you must go to the Tap and Social (not that you have a choice - it's the only café and bar there) cambridge-news.co.uk/whats-on/food-…