Unhackable Cryptography?
A recent article overhyped the release of EverCrypt, a cryptography library created using formal methods to prove security against specific attacks.
The Quanta magazine article sets off a series of “snake-oil” alarm bells. The author’s Github README is more measured and accurate, and illustrates what a cool project this really is. But it’s not “hacker-proof cryptographic code.”
Faustus • April 5, 2019 11:30 AM
Interesting, but even the project page is too PR for me. Most cryptographic algorithms lack formal proof for their basic operations. Implementing the algorithm provably correctly is certainly an important step, but it does not make the result provably unbreakable.