Thom Wiggers

Thom Wiggers

Senior Cryptography Researcher
PQShield
Thom Wiggers is a cryptography researcher at PQShield. His PhD thesis was on the interactions of post-quantum cryptography with protocols, under the supervision of Peter Schwabe, at the Institute of Computing and Information Sciences, Radboud University in The Netherlands.
Protocols

Revisiting PQ WireGuard: A Comprehensive Security Analysis With a New Design Using Reinforced KEMs

WireGuard is a VPN protocol with an efficient, DH-based handshake. Prior attempts at making it PQ heavily relied on Classic McEliece, which has deployment complications. We revisit …

Keitaro Hashimoto
Read more
Hash-based Signatures: State and Backup Management draft-ietf-pquip-hbs-state-00 featured image
Ietf

Hash-based Signatures: State and Backup Management draft-ietf-pquip-hbs-state-00

I presented a status update on our IETF draft on stateful HBS state management, now adopted as a PQUIP working group document.

avatar
Thom Wiggers
Read more
Extended Key Update FATT Report featured image
Ietf

Extended Key Update FATT Report

I presented a Formal Analysis Triage Team report on Extended Key Usage (EKU) in the TLS working group session.

avatar
Thom Wiggers
Read more
Comprehensive Deniability Analysis of Signal Handshake Protocols: X3DH, PQXDH to Fully Post-Quantum with Deniable Ring Signatures featured image
Signal

Comprehensive Deniability Analysis of Signal Handshake Protocols: X3DH, PQXDH to Fully Post-Quantum with Deniable Ring Signatures

Conference talk presenting a unified framework for deniability analysis of Signal handshake protocols, including a deniable ring signature from Falcon/MAYO.

avatar
Thom Wiggers
Read more
Bundled Authenticated Key Exchange: A Concrete Treatment of (Post-Quantum) Signal's Handshake Protocol featured image
Signal

Bundled Authenticated Key Exchange: A Concrete Treatment of (Post-Quantum) Signal's Handshake Protocol

Conference talk presenting the BAKE framework for Signal's handshake protocols, covering X3DH, PQXDH, and the fully post-quantum RingXKEM.

avatar
Thom Wiggers
Read more
Fully PQ TLS in the WWW featured image

Fully PQ TLS in the WWW

Key exchange in TLS is now mostly PQ! But what about authentication? In this talk, I discussed some of the ongoing work to make the costs of PQ certificates acceptable so that …

avatar
Thom Wiggers
Read more

A Comprehensive Study of the Signal Handshake Protocol: Bundled Authenticated Key Exchange

The Signal protocol relies on a special handshake protocol, formerly X3DH and now PQXDH, to set up secure conversations. One of its privacy properties, of value to Signal, is …

Keitaro Hashimoto
Read more
Signal

Comprehensive Deniability Analysis of Signal Handshake Protocols: X3DH, PQXDH to Fully Post-Quantum with Deniable Ring Signatures

The Signal protocol relies on a handshake protocol, formerly X3DH and now PQXDH, to set up secure conversations. One of its privacy properties, of value to Signal, is deniability, …

Shuichi Katsumata
Read more
Signal

Bundled Authenticated Key Exchange: A Concrete Treatment of (Post-Quantum) Signal's Handshake Protocol

The Signal protocol relies on a special handshake protocol, formerly X3DH and now PQXDH, to set up secure conversations. Prior analysis of these protocols (or proposals for …

Shuichi Katsumata
Read more
Hash-based Signatures: State and Backup Management draft-wiggers-hbs-state-01 featured image
Ietf

Hash-based Signatures: State and Backup Management draft-wiggers-hbs-state-01

I presented a status update on our IETF draft on stateful HBS state management.

avatar
Thom Wiggers
Read more