2025.02.03 21:37:44 (Mastodon 113942112799483046, Twitter 1886529547610546581) from Daniel J. Bernstein:
There are many papers with attack analyses: sometimes analyses of specific algorithms, sometimes "security proofs" covering many algorithms. What fraction of these papers are wrong? <1%? >50%? I have a new plan to convincingly settle the debate: https://cr.yp.to/papers.html#eraa