Michele Orrù

270 posts

Michele Orrù

@mmaker

μ-almost everywhere Katılım Kasım 2009

1.4K Takip Edilen1.1K Takipçiler

Michele Orrù@mmaker·4 Mar

Quaterly reminder that this is an API design problem and that you should use github.com/arkworks-rs/sp…

OtterSec@osec_io

We found the same Fiat-Shamir bug in six independent zkVMs. The result: an attacker can bypass the cryptography entirely and prove mathematically impossible statements (like minting $1M out of thin air). Full breakdown ↓

English

3.5K

Michele Orrù@mmaker·19 Şub

@OswaldPer4mance @NBTiller @scinawa we need more than one tea spoon i think

English

Coach Louis@OswaldPer4mance·18 Şub

@NBTiller Hubermann will have you on his podcast talking about how Anal Injection of Creatine shows best results. You can then promote AG1 together

English

134

10K

Nick Tiller, Ph.D.@NBTiller·18 Şub

I take 100 grams of #creatine every day, straight up the ass. I can now move objects with my mind.

English

246

453

10.7K

733K

Michele Orrù@mmaker·18 Şub

one day I hope to be a great advisor like Karthikeyan and lucky enough to have students as smart as Nadim who continue working on my research line even after their PhD

Nadim Kobeissi@kaepora

MASSIVE rewrite of my Verification Theatre paper now on ePrint with added: - Three new bugs that are *inside* libcrux's verified core, - Comparison to Amazon's verified LibCrypto components, - Many additional sections, discussion, details! Go read it! eprint.iacr.org/2026/192

English

861

Michele Orrù retweetledi

vx-underground@vxunderground·31 Oca

Former BlackHat board member Vincenzo Iozzo, and co-author of iOS Hacker's Handbook, had a relationship with Jeffrey Epstein. It appears Epstein attended DEFCON and/or BlackHat in 2013 and 2015, possibly 2016.

English

323

2.2K

290.8K

Michele Orrù@mmaker·1 Şub

love it

English

6.4K

Michele Orrù@mmaker·14 Oca

The zk agenda is moving! Just spoke at Linux Foundation's Decentralized Trust, great to see people realizing the lack of specifications in the space and working towards fixing this.

映彤 ✨🍄✨@therealyingtong

Introducing a new standards lab for generic zk-SNARKs, in collaboration with Linux Foundation Decentralized Trust (@lfdecentralized). Join us on 14 Jan for our first virtual meetup, along with Mary Maller, @srinathtv, @mmaker, and myself: meetup.com/lfdt-sf/events…

English

241

Michele Orrù@mmaker·18 Ara

My talk at Collège de France is out! It’s been fun to give a lecture about modern tools for anonymity starting from simple zk tools, and bridge theory of cryptography with real-world authentication systems. youtu.be/5LlPTF8iivE?si…

YouTube

English

462

Michele Orrù@mmaker·15 Ara

@simonsarris tea is also represented in the picture

English

394

Simon Sarris@simonsarris·14 Ara

tell them the truth

Heshie Brody@heshie

many people call me a matcha girlie but that doesn’t bother me why does bother me, is the number of people who don’t realize how much more effective matcha is as an energy booster then coffee caffeine in coffee gets absorbed in your bloodstream right away giving you a spike of energy before you crash again matcha (green tea) on the other hand has an amino acid known as L-theanine that slows down caffeine absorption creating a smoother sustained energy release for 4-6 hours not to mention the calming effect it has on your nervous system and blood pressure anyway, I hope you try it

English

664

7.5K

545.9K

Michele Orrù@mmaker·15 Kas

@josephdelong @alpeh_v This answer made the post 50% funnier

English

joseph.eth@josephdelong·14 Kas

@alpeh_v You should lean into it and ask them questions you know they can’t answer

English

611

Michele Orrù@mmaker·17 Eki

the new dragon book cover is incredible

English

477

Michele Orrù@mmaker·14 Eki

Presenting my paper on keyed-verification anonymous credentials at @acm_ccs in Taipei in just a few hours! 🗞️ eprint.iacr.org/2024/1552 Exciting to present it in the very same venue where I wrote a big chunk of it while attending @rightscon!

GIF

English

434

Michele Orrù@mmaker·12 Eki

@alpeh_v @levs57 Sure but where can you find the recursive circuit? It doesn’t look like there’s any open source for custom AIRs atm

English

ʕ •ᴥ•ʔ@alpeh_v·12 Eki

@mmaker @levs57 for the like 60k hashes range it makes sense to just recurse with less hashes and use groth for the super succinct proof.

English

ʕ •ᴥ•ʔ@alpeh_v·11 Eki

whats the current state of the art on a simple client side small proofs (eg groth16 or plonk) with not very many constraints (eg o(200) Poseidon hashes)?

English

1.6K

Michele Orrù@mmaker·12 Eki

@alpeh_v @levs57 p3 is zk and has no_std support (I was aabre to generate a wasm proof). agree that proof sizes are bad :( Curious to know if you end up finding something better, I'm on a similar boat as you

English

ʕ •ᴥ•ʔ@alpeh_v·12 Eki

@mmaker @levs57 The problem is proof size because you need a (relatively) small one. But also secondarily I’m asking about which has the most mature engineering support for phones, browsers ect Plus afaik plonky3 isn’t zk which is needed for this application

English

Michele Orrù@mmaker·12 Eki

@alpeh_v @levs57 You can do about 60k Poseidon calls on a normal laptop with plonky3

English

ʕ •ᴥ•ʔ@alpeh_v·11 Eki

@levs57 sigh and here I was hoping to avoid a rabbithole on this one

English

Michele Orrù@mmaker·1 Eki

@nico_mnbl I'm sure only of: Damgård-KSND <=> WEE => KSND in [Gro04, Lin03] Damgård-KSND <=> Goldreich-KSND => KSND in [BG93] I'd be cool to prove equivalence (if it exists) with SR-KSND

Dansk

Michele Orrù@mmaker·1 Eki

@nico_mnbl That's left as an excercise for the reader :( In any case you care about WEE => (rewinding) state restoration knowledge soudness for practical applications

English

Nico@nico_mnbl·29 Eyl

A little bonus if you've been Bulletproof-sniped: I added a short entry on witness-extended emulation to my blog If you are like me, WEE is one of those weird security notions that you ignored the first time you read Bulletproofs and never got back to. About time I did!

David Wong@cryptodavidw

did you forget about Bulletproofs? hope not coz here's some more high-level intuitions

English

Michele Orrù@mmaker·1 Eki

@nico_mnbl Lindell is proving knowledge soundness from Dåmgard! It's tricky, I'm not sure how to prove the other direction.

English

Nico@nico_mnbl·1 Eki

@mmaker Thought so too! The WEE => PoK implication is by definition. However in Lindell03, Lindell defines WEE and then shows that the direction PoK => WEE is also true! See lemma 3.1 of the paper eprint.iacr.org/2001/107

English

115

Michele Orrù@mmaker·28 Eyl

@UHaboeck @PG_CDG It’s correct, the model was such that the long term key is infrequently re-injected in the key exchange. There’s a longer story about the concrete guarantees, but it’s been formalized as post compromise security

English

ulrich.haboeck@UHaboeck·28 Eyl

@PG_CDG It can self heal when your private key was leaked? I hear this the first time. Are you sure that your are not confusing it with forward secrecy, meaning that once your key is known, it can be only used to decrypt current traffic, not the traffic prior to the leak.

English

Piergiorgio Catti De Gasperi@PG_CDG·26 Eyl

The world’s most used encryption was built by a man with a fake name. It protects 5 billion people. And he never monetized it. Here’s how a nonprofit is protecting the internet:

Piergiorgio Catti De Gasperi tweet media

English

104

703

25.4K

Michele Orrù@mmaker·23 Eyl

Thrilled to have been invited to College de France for a seminar about zero-knowledge and online anonymity! college-de-france.fr/fr/agenda/semi…

English

629

Keşfet

@OswaldPer4mance @NBTiller @scinawa @simonsarris @josephdelong @alpeh_v @acm_ccs @rightscon