#protocol-designView all tags

• The KelpDAO Exploit Was Not a Bug

  April 19, 2026 · 22 min — #incident-analysis#security#DeFi#cross-chain#distributed-infrastructure#formal-methods#protocol-design#Ethereum#LayerZero

• Hybrid Schemes and Protocol Agility

  April 16, 2026 · 10 min — #research-notes#post-quantum-cryptography#cryptography#protocol-design#security-critical-infrastructure#devsecops#distributed-systems#TLS

• The Leaf Is the Hot Path: Signature Placement in Post-Quantum TLS (ML-DSA vs SLH-DSA)

  April 8, 2026 · 9 min — #research-notes#post-quantum-cryptography#cryptography#protocol-design#security-critical-infrastructure#devsecops#distributed-systems#TLS#PKI

• Research Frontiers: Composability, Proofs, and Future Primitives

  December 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• Long-Lived Secrets: Forward Secrecy, KEMs, and Key Erasure

  November 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• Post-Quantum DoS Surfaces: Handshakes, Amplification, and Mitigations

  October 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• Operationalizing PQC: Monitoring, Rollback, and Incident Response

  September 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• Quantum-Safe VPN Design: Lessons from Implementing a PQ IPSec Stack

  August 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• no_std Crypto in Rust: Determinism, Side Channels, and Constraints

  July 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• BFT with PQ Primitives: When Crypto Costs Dominate

  June 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• Quantum-Resilient Identity: Device + Human, Online + Offline

  May 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• PQC for Blockchain Signatures: Wallet UX, Size, and Verification Cost

  April 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• Quantum-Safe Secure Boot: Firmware Roots and PQ Signatures

  March 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• Hybrid Key Management: Rotations Across Algorithm Families

  February 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• Quantum Threat Modeling for Infrastructure: What Changes, What Doesn’t

  January 1, 2025 · 3 min — #research-notes#post-quantum-cryptography#security-critical-infrastructure#protocol-design#cryptography

• Compliance & Standards: Translating NIST to Engineering Action

  December 1, 2023 · 3 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• Migration Risk Management: Inventory, Prioritization, and Cutover

  November 1, 2023 · 4 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• Side Channels in PQC Implementations: Where Theory Meets Cache

  October 1, 2023 · 3 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• Benchmarking PQC: What to Measure (and What Not To)

  September 1, 2023 · 4 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• Crypto Agility Tooling: Feature Flags, Policy, and Rollback

  August 1, 2023 · 4 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• PQC for IoT: Memory, CPU, and Timing Side Channels

  July 1, 2023 · 3 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• PQC in VPN/IPsec: IKEv2 Revisited Under PQ Constraints

  June 1, 2023 · 3 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• PQC in TLS: Negotiation, Downgrade, and Interop

  May 1, 2023 · 4 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• Hybrid Key Exchange: Binding Classical and PQ Secrets Correctly

  April 1, 2023 · 3 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• Signatures in Practice: Dilithium/Falcon and Deployment Constraints

  March 1, 2023 · 4 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• KEMs in Practice: Kyber Handshakes and Failure Surfaces

  February 1, 2023 · 4 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• PQC Threat Models: 'Harvest Now, Decrypt Later' in Real Systems

  January 1, 2023 · 4 min — #research-notes#post-quantum-cryptography#cryptography#security#protocol-design

• Spec-Driven Development: Making the Spec the Center of Gravity

  December 1, 2020 · 4 min — #research-notes#formal-methods#verification#protocol-design#correctness

• Designing APIs for Correctness: Types, Lifetimes, and Capabilities

  November 1, 2020 · 3 min — #research-notes#formal-methods#verification#protocol-design#correctness

• Verified Crypto Interfaces: Constant-Time Boundaries and Misuse Resistance

  October 1, 2020 · 3 min — #research-notes#formal-methods#verification#protocol-design#correctness

• Symbolic Execution: When Brute Force Becomes Logic

  September 1, 2020 · 3 min — #research-notes#formal-methods#verification#protocol-design#correctness

• Concurrency Testing in Rust: Loom, Schedules, and Determinism

  August 1, 2020 · 3 min — #research-notes#formal-methods#verification#protocol-design#correctness

• Fuzzing Protocol Parsers: When Inputs Are Adversarial

  July 1, 2020 · 3 min — #research-notes#formal-methods#verification#protocol-design#correctness

• Differential Testing: Using Other Implementations as Oracles

  June 1, 2020 · 4 min — #research-notes#formal-methods#verification#protocol-design#correctness

• Property-Based Testing: Finding Bugs You Didn’t Imagine

  May 1, 2020 · 3 min — #research-notes#formal-methods#verification#protocol-design#correctness

• Refinement: Proving Your Implementation Matches the Spec

  April 1, 2020 · 3 min — #research-notes#formal-methods#verification#protocol-design#correctness

• Model Checking at Scale: State Explosion and How to Cheat

  March 1, 2020 · 4 min — #research-notes#formal-methods#verification#protocol-design#correctness

• TLA+ for Engineers: Modeling the Minimal Thing That Can Break You

  February 1, 2020 · 3 min — #research-notes#formal-methods#verification#protocol-design#correctness

• Safety/Liveness Catalog: A Practical Checklist for Protocol Specs

  January 1, 2020 · 3 min — #research-notes#formal-methods#verification#protocol-design#correctness

• A Minimal TLA+ Workflow for Distributed Protocols

  December 1, 2017 · 4 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• Designing for Network Partitions: Degraded Modes That Still Make Sense

  November 1, 2017 · 4 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• Rate Limiting and Fairness: Protecting Critical Paths

  October 1, 2017 · 4 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• Queues & Streams: Exactly-Once Semantics Without Lying to Yourself

  September 1, 2017 · 4 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• Geo-Replication: Latency Budgets and Cross-Region Failure Modes

  August 1, 2017 · 4 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• Gossip & Epidemic Dissemination: Fast, Probabilistic, and Weird

  July 1, 2017 · 3 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• Transactions: 2PC, 3PC, and Coordinators You Can't Trust

  June 1, 2017 · 3 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• Consistency Models: Linearizability, Serializability, and What You Actually Need

  May 1, 2017 · 4 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• Membership & Reconfiguration: Changing the Set Without Breaking Safety

  April 1, 2017 · 3 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• BFT from First Principles: Safety, Liveness, and Quorums

  March 1, 2017 · 4 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• Consensus Under Partial Synchrony: From Paxos to Raft

  February 1, 2017 · 4 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• State Machine Replication: Log Design, Snapshots, and Compaction

  January 1, 2017 · 3 min — #research-notes#distributed-systems#protocol-design#resilience#Rust

• Security vs Reliability: When the Same Bug Has Two Names

  December 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Reproducible Builds: Trusting Artifacts in a Hostile World

  November 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Observability as Specification: SLOs, Error Budgets, and Contracts

  October 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Fault Injection: Turning Unknown Unknowns into Test Cases

  September 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Memory Models and Concurrency: Reasoning About Races

  August 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Crash Consistency: Durable State Without Mysticism

  July 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Cryptographic Hygiene: Domain Separation, KDFs, and Context Binding

  June 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Threat Modeling for Engineers: Assumptions as Interfaces

  May 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Time Is a Lie: Clocks, Causality, and Ordering

  April 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Backpressure as a Correctness Property: Stability Under Load

  March 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Idempotency Everywhere: Designing Safe Retries in Distributed APIs

  February 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust

• Protocol State Machines: Invariants, Events, and Recovery

  January 1, 2016 · 4 min — #research-notes#protocol-design#correctness#formal-methods#Rust