Lmst

It's public!

Fast Lightweight Online Encryption is a new secure way to do online (think "streaming") authenticated encryption with support for random access.

It comes with a public specification, reference code, test vectors, and a paper proving security.

- https://github.com/Snowflake-Labs/floe-specification
- https://eprint.iacr.org/2025/2275

#Cryptography #IACR #OnlineEncryption #Research

Well, that’s embarrassing.

On the plus side, I guess it works.

#cryptography #fail #iacr

https://www.bbc.com/news/articles/c62vl05rz0ko

Oops. Cryptographers cancel election results after losing decryption key

One of the world’s premier security organizations has canceled the results of its annual leadership election after an official lost an encryption key needed to unlock results stored in a verifiable and privacy-preserving voting system

#IACR #helios #cryptography #encryption #voting #election

https://arstechnica.com/security/2025/11/cryptography-group-cancels-election-results-after-official-loses-secret-key/

https://winbuzzer.com/2025/11/26/international-cryptology-association-loses-crypto-keys-voids-leadership-election-xcxwbn/

International Cryptology Association Loses Crypto Keys, Voids Leadership Election

#Cybersecurity #Encryption #Security #IACR #Cryptography #ElectionSecurity #HumanError #Voting #Governance #KeyManagement #HeliosVoting #Privacy

🫣

A firm considered one of the leading global voices in encryption has cancelled the announcement of its leadership election results after an official lost the encrypted key needed to unlock them.

The International Association for Cryptologic Research (IACR) uses an electronic voting system which needs three members, each with part of an encrypted key, to access the results.

https://www.bbc.com/news/articles/c62vl05rz0ko

#cryptology #encryption #IACR

密碼研究學會「遺失密碼」無法解密選舉內容導致整個投票要重來一次
國際密碼學研究協會（IACR）早前舉行年度管理層選舉，協會採用 Helios 開源電子投票系統，透過先進加密技 […]
#資訊保安 #Helios #IACR #密碼學
 https://unwire.hk/2025/11/25/iacr-election-cancelled-key-lost-2025/tech-secure/?utm_source=rss&utm_medium=rss&utm_campaign=iacr-election-cancelled-key-lost-2025

Kryptograficzna wpadka roku: eksperci od szyfrowania zgubili klucz do własnych wyborów

To brzmi jak scenariusz kiepskiej komedii o działach IT, ale wydarzyło się naprawdę w jednej z najbardziej prestiżowych organizacji zajmujących się bezpieczeństwem na świecie.

International Association of Cryptologic Research (IACR) została zmuszona do anulowania wyników swoich corocznych wyborów do władz stowarzyszenia. Powód jest prozaiczny, a zarazem kuriozalny: jeden z urzędników zgubił klucz szyfrujący niezbędny do odczytania oddanych głosów. Organizacja przyznała, że odzyskanie wyników jest technicznie niemożliwe.

Głosowanie przeprowadzono przy użyciu systemu Helios, narzędzia open source, które wykorzystuje recenzowaną przez środowisko naukowe kryptografię do zapewnienia tajności i weryfikowalności wyborów.

Zgodnie z regulaminem stowarzyszenia, aby zapobiec manipulacjom, trzech niezależnych powierników otrzymało po jednej części materiału kryptograficznego. Aby odszyfrować ostateczne wyniki, system wymagał wprowadzenia wszystkich trzech części klucza prywatnego. Niestety, jeden z powierników „bezpowrotnie utracił” swoją część, co IACR określiło mianem „uczciwego, ale niefortunnego błędu ludzkiego”.

Konsekwencje tego zdarzenia są natychmiastowe. Moti Yung, powiernik, który nie był w stanie dostarczyć swojej części klucza, zrezygnował z pełnionej funkcji i został zastąpiony przez Michela Abdallę. Aby uniknąć powtórki z tej sytuacji w przyszłości, IACR zmienia procedury zarządzania kluczami prywatnymi. Zamiast wymagać kompletu trzech części, przyszłe wybory będą opierać się na mechanizmie progowym, wymagającym do odszyfrowania tylko dwóch z trzech fragmentów klucza. Nowe wybory rozpoczęły się w miniony piątek i potrwają do 20 grudnia.

#bezpieczenstwo #helios #iacr #kryptografia #news #szyfrowanie #wpadka #wybory

Cryptographers Held an Election. They Can’t Decrypt the Results.

Cryptographers Held an Election. They Can’t Decrypt the... #cryptography #iacr #election #encryption #helios #news #worldnews #nottheonion

https://kbin.melroy.org/m/nottheonion@lemmy.world/t/1336462

Oops. Cryptographers cancel election results after losing decryption key.

https://arstechnica.com/security/2025/11/cryptography-group-cancels-election-results-after-official-loses-secret-key/

#cybersecurity #cryptography #cryptology #IACR

The results of the 2025 elections for the president and board members at the International Association for Cryptologic Research (IACR) have been botched because the results of the super-secure cryptographic e-voting system cannot be retrieved due to the "accidental loss" of a decryption key.

https://iacr.org/news/item/27138

While human mistakes happen, this incident comes under very troubling circumstances.

Why does an e-voting system of an association like IACR not support t-out-of-n threshold decryption?

Why is a system where a single party can collude to invalidate the vote considered acceptable?

Wouldn't be wiser to freeze to the date of November 20th the eligibility status for voting instead of "calling to arms" IACR members who had previously decided to opt out from Helios emails?

Does the identity of some of the candidates to Director represent a problem for IACR?

#iacr #crypto #cryptography #politics #evoting

WTF IACR?

Conspiracy intensifies...

#iacr #helios #crypto #cryptography #politics #conspiracy

A screenshot from IACR's announcement:

"This announcement is in connection with the recent IACR 2025 election conducted using the Helios electronic voting system. Regrettably, we have encountered a fatal technical problem that prevents us from concluding the election and accessing the final tally.

For this election and in accordance with the bylaws of the IACR, the three members of the IACR 2025 Election Committee acted as independent trustees, each holding a portion of the cryptographic key material required to jointly decrypt the results. This aspect of Helios’ design ensures that no two trustees could collude to determine the outcome of an election or the contents of individual votes on their own: all trustees must provide their decryption shares.

Unfortunately, one of the three trustees has irretrievably lost their private key, an honest but unfortunate human mistake, and therefore cannot compute their decryption share. As a result, Helios is unable to complete the decryption process, and it is technically impossible for us to obtain or verify the final outcome of this election."

That said, I am glad that IACR is addressing this "human mistake" by making a "system design change" to a 2-of-3 quorum for the re-run.

https://www.iacr.org/news/item/27138

#IACR #Cryptography #KeyManagement #InfoSec #OPSEC #Elections

Cryptography group cancels election results after official loses secret key https://arstechni.ca/t3ky #internationalassociateforcryptologicalresearch #electionsystems #encryptionkeys #Security #Biz&IT #iacr

Possibly the funniest thing that could have happened in the board elections for the International Association
for Cryptologic Research

#IACR #cryptography

Screenshot taken from the IACR website, of a news article about their current election. The text reads:

"For this election and in accordance with the bylaws of the IACR, the three members of the IACR 2025 Election Committee acted as independent trustees, each holding a portion of the cryptographic key material required to jointly decrypt the results. This aspect of Helios’ design ensures that no two trustees could collude to determine the outcome of an election or the contents of individual votes on their own: all trustees must provide their decryption shares.

Unfortunately, one of the three trustees has irretrievably lost their private key, an honest but unfortunate human mistake, and therefore cannot compute their decryption share. As a result, Helios is unable to complete the decryption process, and it is technically impossible for us to obtain or verify the final outcome of this election."

“Key Management” is the cryptographic community’s version of “…it’s always DNS” https://alecmuffett.com/article/126061 #cryptography #iacr

“Key Management” is the crypto...

“Key Management” is the cryptographic community’s version of “…it’s always DNS”
https://alecmuffett.com/article/126061
#cryptography #iacr

“Key Management” is the cryptographic community’s version of “…it’s always DNS”

International Association for Cryptologic Research runs secure vote and then loses the keys so nobody knows what the result is. As one commenter put it: “So a single member can collude to reset the vote?”

https://twitter.com/tqbf/status/1991635031845155265

#cryptography #iacr

I will be at #IACR #Crypto2025 this year. I always enjoy meeting new people and catching up with old friends. If you're going, then please feel free to drop me a line.

"Towards Optimally Secure Deterministic Authenticated Encryption Schemes" was presented today at #IACR #Eurocrypt 2025 in Madrid.
https://link.springer.com/chapter/10.1007/978-3-031-91107-1_1

This morning our researcher Robin Geelen presented "Fully Homomorphic Encryption for Cyclotomic Prime Moduli" at #IACR #Eurocrypt 2025 in Madrid.
🔎Interested in this topic? Robin wrote a blog post to explain everything: https://www.esat.kuleuven.be/cosic/blog/eurocrypt-2025-a-new-fhe-scheme-for-high-precision-arithmetic/
#fhe #cryptography

#IACR

Client Info