Hello Rustographers!



I'm pleased to announce the December meetup on Thursday, December 18th at the SF Mozilla office! Our topic that evening is all about the cryptographic work that has been going on in and around Rust. We've got a great lineup of speakers that evening:



Sean Devlin (Head of Matasano's Cryptography Practice):

I think I'd like to speak about the importance of good API design as it pertains to crypto. I'll have some examples of what not to do (from other languages' stdlibs) as well as examples to emulate.



Tony Acieri (Member of Square's Infosec Team):

- Survey of the crypto libraries I've seen written in Rust

- How to build a good crypto library in Rust- What a common crypto library for Rust should look like



If I have time and actually finish my code:



- Why constant time operation is essential for secure cryptography (i.e. crash course on cache timing attacks)

- Measuring data dependent timings in Rust crypto libraries (using my vaporware library "cyclometer")



Matthew McPherrin:

I would like to talk about rust and the kernel crypto APIs



Huon Wilson (In person!):

I'm going to speak about randomness & random numbers, probably related to RNG quality, hopefully with some sort of tie in to the Rust language and/or std::rand.



Sébastien Martini (remote):

The problem of secure buffers, memory allocations and protection.



As always, Mozilla will be graciously providing food and drink.



I hope you all can make it!



-Erick