CryptoDB
Thyla van der Merwe
ORCID: 0000-0002-4258-3529
Publications and invited talks
Year
Venue
Title
2025
RWC
Using Formally Verified Post-Quantum Algorithms at Scale
Abstract
In an attempt to provide organizations with access to correct and bug-free implementations of the new NIST-selected PQC algorithms, Cryspen and Google have joined forces to produce formally verified, open source implementations of these algorithms. In this talk we will cover our cutting-edge approach to formally verifying ML-KEM, the challenges encountered during the verification process, and the timing side channel attack uncovered by the process. We will also discuss the way forward for formal verification of PQC algorithms, the impact of formal verification on the development workflow, and the subsequent deployment of secure and optimized PQC implementations.
Service
- Eurocrypt 2024 General chair
- RWC 2024 Program committee
- RWC 2023 Program committee
- RWC 2022 Program committee
- RWC 2021 Program committee
Coauthors
- Karthikeyan Bhargavan (1)
- Andres Erbsen (1)
- Lucas Franceschino (1)
- Franziskus Kiefer (1)
- Thyla van der Merwe (1)