Hello all!
Since the forum hasn’t had any listed rules until now, I’m going to import the rules which have worked over at the cryptography forum which I’ve been moderating in on reddit. I’ll list the rules here with explanations.
Forum rules
1: Stick to the topic of cryptography
The focus is on modern cryptography (computer security algorithms and protocols and their implementations). We also allow related infosec topics (including phishing, security UX, etc) as well as discussion of notable historical ciphers, but keep in mind that just because cryptography is mentioned in an article it doesn’t necessarily mean it’s relevant. Analogy: a forum about motors wouldn’t let you post about road trips. In this forum, a submitted article should have a substantial security aspect. If you’re unsure, ask the mods or ask in a meta thread.
2: Engage in good faith, maintain high quality & accuracy, don’t mislead
To keep quality high, first of all, be kind. Behavior which discourage other good faith participants from contributing is not allowed.
Second, modern cryptography implies threat models, public specifications, source code, security proofs, etc.
Don’t leave out important information. Please cite your sources.
Remember that bad advice can be dangerous!
3: Crypto review requests must explain the algorithms
We follow Kerckhoffs’ principle and Schneier’s Law - posts that asks for security review of custom algorithms or implementations MUST also publish the full algorithm and a description of its use. Otherwise there can be no meaningful security analysis. Sharing just the output is like…
4: Challenges and puzzles must use modern crypto
Simple codes, ciphers, ARGs, and other such “weak crypto” don’t belong here. Rule of thumb: If a desktop computer can break a code in less than an hour, or if it can be broken by hand, it’s not strong crypto.
5: Don’t cheat on challenges or tests!
Don’t use this forum to cheat on competitions, challenges or tests! You may ask for help to understand a test question, but you are not allowed to ask others to solve it for you. You must also disclose the source of a problem you’re asking for help with.
6: Link directly to original sources (with exceptions)
We prefer original sources of news, source code, academic papers or similar, rather than clickbaity buzzword blogspam. Avoid snake oil and low quality sources.
Do not post link shortener or to link farms or similar low quality sites, avoid mirror sites (unless necessary due to eg. paywall, like archive.org), and link directly to the original (unless you’re posting a more readable expert written summary).
7: Avoid making duplicate posts
In low volume forums like this, multiple posts on breaking news will easily flood the forum. Please check if news is already posted. Different sources on the same news should be posted as comments in the existing thread (exceptions may only be made for substantial new information or if the prior thread is old - ask the mods if you’re unsure)
8: All use of AI / LLM and their prompts MUST be disclosed in your submissions and comments
Instead of entirely banning LLMs, we require transparency. Due to LLMs so often being confidently wrong, we PROHIBIT all undisclosed use of LLM when posting regardless of the nature of your post. If used, you MUST share the prompt!
No LLM / AI is exempt!
If you’re here to ask a question, a major problem is that the LLM output will carry implied INCORRECT context which you will not recognize, but which we will see, increasing the risk of misunderstanding. We will not be able to give you correct advice if we don’t know your thought process!
Quick question on R4
Should this be broken by hand?
Yeah, editing error