​Join us for a presentation and meetup with Nadim Kobeissi, Senior Applied Cryptography Auditor of Cure53.

​Description

​Privacy networks and cryptographic infrastructures are only as strong as their weakest links. In this talk, Nadim Kobeissi will present key findings from Cure53’s latest security audit of Nym, a decentralized privacy network. The audit uncovered critical vulnerabilities, including signature forgery in the Pointcheval-Sanders scheme, BLS12-381 EC signature bypasses, nonce-key reuse in AES-CTR, and double-spend attacks in offline eCash.

​The session will provide a technical deep dive into these security flaws, demonstrating how they were discovered, their real-world impact, and the mitigations implemented. Attendees will gain insight into cryptographic attack vectors, best practices for securing decentralized privacy networks, and lessons learned from auditing complex cryptographic protocols.

​This talk is ideal for security researchers, cryptographers, and developers working on privacy-preserving technologies who want to sharpen their security mindset and better understand the risks lurking in cryptographic implementations.

​Speaker Info

​As a Senior Applied Cryptography Auditor at Cure53, Nadim leverages his extensive experience in software security audits to ensure the integrity of critical cryptographic systems. Nadim has contributed to over 250 software security audits, both independently and through partnerships with Cure53. Additionally, he is the Director at Symbolic Software, where he publishes research software for applied cryptographers and indie video game projects. Nadim is passionate about advancing the field of cryptography and making it more accessible to developers and researchers.

​More Information

​See ostif.org/meetups for more information on upcoming and past meetups, as well as a link to apply to speak at a OSTIF meetup yourself!