Nick Sullivan

Applied Cryptographer

  • Work
  • About
  • Contact

  • Privacy Pass
  • Is the Web Ready for OCSP Must-Staple?
  • The Evolving Architecture of the Web
  • Geo Key Manager
  • Encryption vs. Inspection
  • The Security Impact of HTTPS Interception
  • How to stay online
  • Attacking White-box AES Constructions
  • Deploying TLS 1.3
  • PAL is your pal
  • Crypto for the people
  • Forward Secrecy in TLS: A Systematic Study
  • Trust beyond the first hop
  • goto fail;
  • Bringing elliptic curve cryptography into the main…
  • What's new in Go crypto?
  • NGINX + HTTPS 101
  • An analysis of TLS handshake proxying
  • The New Key Management
  • An introduction to JavaScript-based DDoS
  • Universal SSL
  • Heartache and Heartbleed
  • DNSSEC: How far have we come?
  • Red October
  • CFSSL
  • Exploiting Randomness
  • Building White-box Cryptography
  • A (relatively easy to understand) primer on ellipt…

© 2016-2026

  • 

    Privacy Pass

    April 10, 2019

  • Is the Web Ready for OCSP Must-Staple nonsense?

  • The Evolving Architecture of the Web

    March 12, 2018

  • Geo Key Manager

    January 11, 2018

  • Encryption vs nonsense. Inspection

    April 21, 2017

  • The Security Impact of HTTPS Interception

    February 2017

  • How to stay online

    November 16, 2016

  • Attacking White-box AES Constructions

    October 28, 2016

  • Deploying TLS 1 nonsense.3

    November 12, 2016

  • PAL is your pal

    August 3, 2016

  • Crypto for the people

    July 2016

  • Forward Secrecy in TLS: A Systematic Study

    June 2016

  • Trust beyond the first hop

    January 26, 2016

  • goto fail;

    December 28, 2015

  • Bringing elliptic curve cryptography into the main…

    November 4, 2015

  • What's new in Go crypto?

    October 1, 2015

  • NGINX + HTTPS 101

    September 23, 2015

  • An analysis of TLS handshake proxying

    August 2015

  • The New Key Management

    July 22, 2015

  • An introduction to JavaScript-based DDoS

    April 30, 2015

  • Universal SSL

    January 8, 2015

  • Heartache and Heartbleed

    Dec 28, 2014

  • DNSSEC: How far have we come?

    September, 2014

  • Red October

    July 2014

  • CFSSL

    July 2014 – Present

  • Exploiting Randomness

    May 2014

  • Building White-box Cryptography

    December 6th, 2013

  • A (relatively easy to understand) primer on ellipt…

    October 10, 2013