Andrew Miller
@socrates1024
Followers
22K
Following
42K
Media
1K
Statuses
30K
product larp @ teleport studio https://t.co/GW5aptGTVz 🛡️ oauth3 core dev 🛡️ dstack integrations 🛡️ https://t.co/uT4qFVcVFN
Joined March 2009
My grandma was really patient when I set her laptop up with Ubuntu, got her crossword puzzles working and everything. Next time I visited she just had a whole new laptop w/ windows and never brought it up again but I wasnt wearing the sweater she bought me so guess we're square.
11
301
8K
We evaluated TEE-based blockchain Secret Network to see if it was susceptible to AepicLeak, and ended up finding the master decryption key for the whole network. Read more and see a testnet demo at
Our survey of SGX attacks is out! Come learn about how SGX fails in real life. Check out our website including attacks on @SecretNetwork and @CyberLink PowerDVD.
71
292
939
#InternetOfThings is when your toaster mines bitcoins to pay off its gambling debts to the fridge.
20
878
902
I've been approved for tenure and promotion to associate professor!.Celebrating with this sick boardslide
81
12
487
Life Hack: If you drop something like your cell phone or a dish, try to catch it with your foot. Doesn't have to be perfect, just slow its fall and dissipate a bit of energy before it lands. With a bit of practice you can reduce your broken phone rate by up to 40%.
64
30
458
The best part of the bible is the DRM metadata included at the end
18
50
386
The Cycles whitepaper shows how to use TEE+ZK to build a permissionless credit clearing application using private graph computation. The TEE is for privacy of the shared state (balnces of unpaid invoices) while ZK is for integrity and account privacy.
Bitcoin: a peer-to-peer electronic cash system. Cycles: a peer-to-peer electronic clearing system. Introducing the Cycles whitepaper 🧵
5
35
264
Baby SNARK (do do dodo dodo)!. A tutorial on the simplest SNARK, its implementation, and most importantly its soundness proof. Comes with code .and writeup .@sanket1729 @ZhangYe46023266 . still rough around the edges, but pls enjoy.
2
65
226
50 lines for a tor onion service in a confidential container. You can serve a TEE-based decentralized frontend without having to reveal the TEE's IP address .
14
26
228
I can't believe it - I'm actually waiting in a *queue* to use the Bitcoin ATM on green st.
7
64
185
Chainlink's new offchain reporting protocol is really elegant and practical; in the style of layer 2 and optimistic protocols it saves costs by only using the blockchain to post final results and as a backstop when rotating leaders, plus design nuance on periodic reporting times.
For those wanting an in-depth technical overview of the design goals, computer science, and report generation process behind Chainlink Off-Chain Reporting, we encourage you to read the OCR protocol paper linked below.
5
27
182
bought fish with bitcoin. shopkeep made me wait FOUR BLOCKS before leaving. The future's already here, it's just waiting to be confitmed.
10
17
177
Today we're making public a resource exhaustion vulnerability affecting more than a dozen proof-of-stake cryptocurrencies. TL;DR: they don't adequately validate blocks before storing them in disk/ram. Our coordinated vulnerability disclosure began in november.
“I Can’t Believe it’s not Stake” resource exhaustion attacks on UTXO-longest chain model PoS currencies with @socrates1024, Yunqi Li, Yuguang Chen, and Joseph Kuo at Decentralized systems lab at UIUC.
4
66
177
Pleased to announce I've partnered with Amazon Web Services to leave an unused server running for 18 months.
4
6
173
Decentralized TEE Frontends can help address this by putting critical frontend components under the same release management as smart contract upgrades.
So TL;DR the safe app frontend was compromised as far back as 19th February. Compromise happened through leaked infra keys via a safe developer's machine. They specifically went after bybit but could have hit any one of you. Now after losing $1.5bn can we switch to local apps?
18
29
169
debunking TEE fud: a short argument reset to start the new year. collab with @0xQuintus .Myth 1: “SGX is being deprecated!" Trusted hardware is over.” Actually Confidential Compute is booming. Normies are going to use this whether or not web3 does too.
10
40
163
by data availability layer do you mean a whole other blockchain.
16
6
152
!! NSF CAREER: Composable Programming Abstractions for Secure Distributed Computing and Blockchain Applications We'll be working on new robust system designs, and making the full power of cryptography available to application programmers @ECEILLINOIS.
24
19
159
TEE software ecosystem has to stay humble because there's no technical edge. It's not like ZK where there's math and algorithms to invent. a PhD in algebra barely helps you read Intel product manuals or patch replay attacks like it's 2004.
16
8
159
Kids today don't understand the value of ten trillion dollars.
4
18
141
Announcing the Ratel paper, led by @lilioneviola It lets you extend your Solidity contracts with confidential multiparty computation written in MP-SPDZ.Examples include a "dark pool" univ2 and a liquidation auction
10
35
147
PSA: The use of Zcash shielded transactions is *not enough* to ensure privacy. There are a host of concerns, side channels, cookies, etc. This page is a good start:
9
57
127
Congrats to Dr. Tom Yurek @tom_yurek, first PhD from Decentralized Systems Lab!.Incredible portfolio of work on honey badger protocols: aggressive batching in asynchronous protocols for anonymous messaging, distributed key generation, and generic MPC.
7
11
137
Infra summer is over, time to put away toys and focus on the ✨end user!✨Top 5 trends in Consumer Applications to watch for in 24q4:.- fhe decryption of stealth address.- zk tls oracle with tee.- p2p censorship resistant log file.- chain abstraction preconfs.- vrf rng with tee.
11
14
140
@ofnumbers Just joining in here to support @NeerajKA he's very funny and does a great job, both at shitposting and the rest of his job.
1
1
124
As an unaccountability passholder I have absolutely zero obligation to make myself legible to you munchkins. Nonetheless, I have produced this schematic to illustrate how my personal strategic interests relate to one another. Thank you CT and lfg another decade
10
14
128
The average US person swallows 3000 shrimp in a year during their sleep.
9
14
131
If I owned the trademark I would bring a lawsuit against anyone using "ZK" to mean "succinct" instead of "zero knowledge".
16
20
131
Unpopular opinions: .1. Cryptocurrency scarcity is a joke, it's backed by a few hundred geeks with 21M tattoos on their foreheads promising it's not just a phase they're going through. 2. What do $, stocks, and BTC all have in common? They're not backed by anything valuable.
71
20
123
TEE solves everything and nothing. Soon TEE will be the default cloud option you have to go out of your way to unselect. On the other hand, the remains an inherent tension between security/immutability and ease of upgrades. Exact same issue with ordinary smart contracts.
14
26
128
UniverseCoin, UniverseCoin. Blocks the size of a universe coin. Usually kind to smaller coins. UniverseCoin. TriangleCoin, TriangleCoin. TriangleCoin hates UniverseCoin. They have a fork, Triangle wins, TriangleCoin.
3
24
122
Now imagine all the roaming PokemonGO players are also passing keys, messages, and physical items when they encounter each other #DarkMarket.
7
60
116
Excited to announce that our research paper on SaUCy (Super amazing Universaity Composability) and the Interactive Lambda Calculus will appear at PLDI19. preprint online now:.@_kevinliao @matthewhammer.
8
26
113
All trilemmas can be any two of:.- well defined.- insightful.- true.but never all three.
7
18
112
Hiring up to one Ph.D student next year for Decentralized Systems Lab to explore one of two focus areas: 1) decentralized governance and bridging to political science 2) privacy smart contract programming models using ideal functionalities.
6
32
110
Disable Input/Output Interfaces to make sure the security
7
38
99
Btw, this SGX-revm demo also runs on my $330 SGX legacy laptop, just so ppl know you don't necessarily need a cloud subscription to do this kind of development.
ok we got something basic working w/ @socrates1024
5
6
105
EVM🤮🤢is a relic of the past(2015)🐌💸 Costs lots gas⛽️Smells👃like @$$🍑💨We need a VM more lit🔥than my insta📸✨Let's yeet EVM into the sun🌞Cook👨🍳something more fire🔥than my mixtape🔥💿 With ideas💡from the last 40👴years of VM💻research🤓📚I approve this message👍.
15
12
110
The Cybertruck's weird boxy shape is to make it environment friendly. Shapes like this are easier to compress in a zip file, which makes computers happier and use less energy.
The @Tesla #Cybertruck is here, and pre-orders are open. •Production starts in 'late 2021'.•A single-motor RWD model costs $39,900.•Triple-motor AWD with 500+ miles of range costs $69,900.
5
7
103
Attn all cryptocurrency researchers: The BITCOIN workshop is now *merged* into Financial Cryptography this year This means SUBMIT YOUR PAPERS IN SEPTEMBER theres no later deadline like previously @paddyucl @srg @el33th4xor @Ethan_Heilman @real_or_random.
1
33
92
this is a cool paper on forking/cloning/rollback attacks on TEE based blockchains. They spotted three new vulns in Secret, Phala, and Ten. for secret, the issue is the io consensus key can be the same across different contracts if they share the same code.
4
21
107
Can't praise @PhalaNetwork team enough for Dstack collaboration and TEE house. Jupyter livecoding attestations is demo genius. Redpill cypherpunk af. Great hackathon mentors & teammates, incl late shifts code covering for my mistakes. Thx for great friends @bgmshana @marvin_tong.
6
18
106
Announcing the soft launch of HoneyBadgerMPC - a robust MPC implementation for blockchains (v0.1-alpha prerelease).Research paper and more information coming shortly.
2
25
101
This is a full circle moment. the Wikileaks donation blockade from Visa/Master cards is the event that got me interested in cryptocurrency a decade ago Now its fulfilling that narrative.
The @AssangeDAO has now raised over US $42.3 million (13,563 ETH) for bidding in the 'Clock' auction which ends in 46 hours. All monies raised go to help free Julian Assange .Contribute: Chat: Info:
2
33
102
I'm expressing my support for a 2X fork. I think the risks of 2x are overstated, censorship is abhorrent, and divisiveness self-inflicted.
27
20
93
Thrilled to announce TxProbe, the latest in Bitcoin p2p topology inference. The goal is to probe whether two reachable nodes are in fact connected directly to each other. Achieving this relies on several subtle insights about how transactions are relayed.
2
34
98
Great to draw attention to Private Shared State. However focusing on FHE as a solution is really misleading. It's *threshold assumptions* that are doing the work here. But everyone talking about FHE omits this part from their explanation. 👏 Say 👏 who has 👏 the decryption keys.
1/ Lack of on-chain privacy is one of the biggest issues in crypto. Although zk solutions, e.g., Aztec, enable private transactions and compute over private data, they have a major problem: handling private shared state. This is where FHE and startups like @inconetwork shine
5
20
101
teleport team is proud to provide s8n TEE solutions. more weird dstack apps that collect oauths like souls. shout-out to contributors @albicodes.@odysseus0z @KanishkKhurana @rchuqiao
happy National Nothing Day! 🥳. in collaboration with Teleport (a Flashbots[X] incubated project) we are launching a memetic experiment: . Deals with the Devil via TLDR: you can now make deals with @s8n about your posting activity and give it secure
2
17
103
Financial Cryptography '23 starts tomorrow with the first ever pre-conference tutorial: CFMMs with @GuilleAngeris @tarunchitra @theo_diamandis
4
27
94
If I had 10 hours with physical access to attack a TEE I would waste the first 8 hrs doing this.
8
8
100
New half-semester course: 398SC: Smart Contracts and Blockchain Security. Filled up in 24 hours. Might auction off additional seats :p
11
19
94
Segwit is awesome engineering and I #longbet it will be ratified in December. I admire Core for maintaining a consistent technical vision.
10
34
92
Unpopular opinion: Closed peer review processes that do not at least publish the reviews alongside accepted papers are .a) wasteful of reviewer effort, a scarce resource.b) enable gatekeeping without accountability.This is sadly still the standard in academia with few exceptions.
6
21
94
Great talk from @buchmanster outlining the case for TEEs in private compute on Cosmos, how the sidecar approach improves on alternatives, how to use mitigate TEE limitations w ZKP and in-enclave light clients. Follow @cyclesmoney for TEEs and private graph stuff
1
21
94
Sealing with MRSIGNER is an SGX anti-pattern, since creates an unwanted privacy backdoor. Secret Network and all the upcoming TEE-based blockchains must avoid it. This and more in my blogpost at IC3.
1
19
89
Huge thanks to Automata for clearing tech debt around remote attestation in SGX/TDX. Remote attestation involves 3 components:.1. Attestation generation (trusted, in TEE) .2. Attestation verifier (trusted, in or out of TEE).3. Everything else, roughly called PCCS (untrusted). .
We are releasing DCAP library v4 today. To the Flashbots team for their intellectual friendship: @tzhen @Freddmannen @socrates1024 @DistributedMarz @bertcmiller @0xQuintus. and to the @RiscZero team who slashed our attestation costs by 16x - Kudos!.
3
13
95
I could supervise up to one PhD student intern at Flashbots this summer. I'm interested specifically in:.- writing kernel modules / SGX-step scripts to demonstrate and documenting side channel and replay attacks on SGX applications .- ideal functionality modeling of SUAVE.
12
18
79
Delighted to partner with Cycles to make network credit a reality. An outstanding team, forged from the Cosmos, tackling a deep economic problem. Fintech in the front, permissionless privacy in the back. Fwiw my strategy chart remains accurate this year.
1/ We’re excited to announce that Andrew Miller joined our team last summer to lead Cycles protocol design, with a focus on secure privacy for payments and credit via TEEs & ZKPs. There’s few people better positioned for this kind of protocol design work than @socrates1024.
7
7
92
I invented MEV in 1998 while playing GoldenEye 64. Three player split screen deathmatch. Facility. Proximity mines only.
5
5
89
weird dream again dan boneh called me mister enclave and handed me a puf.
12
0
88
"teleport: ". I am the CHIEF Solutions Architect at flashbots. Please do not @ me, I’m solutioning. My LinkedIn status will be updated shortly to reflect this new position.
16
0
90
ong TEEs are bussin’ fr fr mad mogging on other primitives. I always cook wen using them. it really slays and helps avoid any menty b bc of complexity of other solutions. you’re cooked if you don’t use them and you have no rizz.
21
15
89
Announcing "Decentralized Credit Networks" a new workshop October 26th at AFT in New Jersey this year: Co-organized with Aniket Kate @aniketpkate .See our call for contributed talks.
6
21
85
Check out Ralph Merkle's new paradigm for mechanical computing using only linkages and rotary joints (animation is of a shift register)
4
26
79
I'm boycotting Consensus out of solidarity with Vitalik and because I was not offered a free ticket and.
5
4
81
Zcash now has two independently developed full node consensus implementations! That's 2x more software decentralization than. Most blockchains.
The Zcash Foundation is pleased to announce the release of the first stable, audited version of Zebra: Zebra 1.0.0.
0
20
81
⚡🤖 Flashbots is hiring SGX Engineers. Join us to build SUAVE, keep Ethereum decentralized, and change how smart contract devs think about privacy tech.
11
23
82
I'm interviewing for a new TEE infra company, first interview in 4 years 😃.
6
0
85
The real magic was how we used TEE to post (once only) without us ever directly holding user credentials. We can show end to end audit log of what software handled users' oauths, the disclaimers they had to click through, and what was posted.
4/ The grand finale featured a twist. Using Teleport, a TEE project contributed by Flashbots, Bobu tweeted from the X accounts of about 300 people who had registered beforehand. Teleport allows users to create "post once" links for their accounts, with AI-driven policies
6
18
84
there are only two problems in computer science: bricking it and livestreaming your private key.
11
5
78
we choose to build the L2s in this decade, and do the other things, not because they are easy, but because they are fashionably hard.
6
8
82
Leading a hackathon project next week: a decentralized IPFS https gateway using SGX to provide content integrity guarantee without any browser plugins. Triple barrel, using - SUAVE Sirrah, Phala, and Cycles Quartz.Welcome to follow along from home, Ill post updates and tutorial.
5
11
80
train read words to the ai your. to differently keep out of thoughts.
6
4
75
Nym is a very cool project that builds on top of the panoramic mixnet protocol. It is kind of a layer-0 privacy enhancement, the way Zcash is layer-1 and Bolt is layer-2.
Today we are publicly launching our project to break surveillance’s stranglehold on the internet. Find out more at our website:
2
21
77
I'm joining U. Illinois @ Urbana-Champaign as an Assistant Professor in Computer Engineering and Computer Science @ECEILLINOIS @IllinoisCS.
18
12
78
Huge $4M grant from Ethereum Foundation to Starkware for scalability through verifiable computation!.
0
19
77
Here's my take on "identity". I want an independent organization that 1. Signs a public key for people, storing biometric information. 2. Let's you rekey at any time, revoking the old one. And that's it (it needs to do those jobs well).
9
18
77
Cycles is a permissionless TEE&ZKP credit network that completely changes how you think of p2p lending. It's a fundamentally post-money and post-token application.
Soon we’ll release the @cyclesmoney whitepaper on a new financial paradigm, so here's a few things you should know to prepare yourself. We know that blockchains, crypto, and defi apps have long promised to replace banks and finance. But there’s a lot of problems with this 🧵.
4
15
78
If you read Harry Potter and liked the parts about horcruxes, you're sorta ready for secret sharing, threshold crypto, and MPC.
2
24
77
If you're new to the Financial Cryptography conference but want to catch up on the lore, check out this documentary about the vibe from 1997. See how many heroes you can spot! (Japanese language, eng subtitles)
2
24
77
New speedrunning category unlocked: "snip20% glitchless.".We found and demonstrated more privacy hazards in TEE-based blockchains, especially Secret Network, this time without breaking the TEE itself.@nerlsss @lilioneviola @tom_yurek @iseriohn42 @sbellem.
5
23
75
getting excited for IC3 blockchain camp hackathon project prep is underway :O.themes include zkp, TEEs, consensus. more governance,daos,public goods than prev years. looks great
9
6
77
my dream is for AI agents to automate awkward business emails so we humans are free to spend our time buying and selling artwork.
19
4
77
fam squad, l’utilisation des TEEs c’est swag, c'est litty, c'est gyatt niveau 10. Si vous utilisez les TEE, votre aura est infinie et je dirais que vous avez ate. Ne soyez pas basic, mes besties, soyez un sigma et secure the bag avec un TEE. Skibitee toilet rizz.
17
8
79