mwilkison's comments

NuCypher is hiring an engineering lead to help build a new open-source cryptosystem leveraging post-quantum cryptography. A successful candidate does not need to have prior experience in cryptography as they will work very closely with a cryptographer to build out the system. However, they should be a quick learner and comfortable around math (e.g. linear algebra, probability, number theory).

A successful candidate will lead engineering for the new open-source cryptographic product from the ground up. They will work on problems at the forefront of cryptography and have a leadership role in design decisions of the system. As such, competency in algorithms and low-level design is a must. An interest in compilers and/or optimization would be nice to have. Given the nature of an early stage product, a successful candidate should work in a fast and iterative style when it comes to prototyping. They will be be motivated by solving tough open-ended problems. Additionally, they should be highly comfortable working in a system programming language such as C or Rust (whether through work experience or side projects).

We offer competitive compensation and a highly flexible working environment.

Responsibilities:

  * Design and build the core infrastructure of a new cryptographic system (alongside a cryptographer);
  * Lead the engineering side of the product;
  * Implement cryptographic primitives (including zero-knowledge proofs and fully homomorphic encryption) and write robust, security-first code that will run in high-risk, adversarial environments;
  * Contribute to research;
  * Improve engineering standards, tooling, and processes.

  * Proficient in a system programming language such as C or Rust (also open to those proficient in a functional programming language);
  * Competency in algorithms and low-level design;
  * Confidence working with multiple programming languages;
  * Comfortable around math;
  * Excellent communication skills and the ability to explain complex technical issues to a non-technical audience.

  * Math background and/or strong interest in math;
  * Background in compilers and/or optimization;
  * Familiarity with applied cryptography and advanced cryptographic concepts like lattice-based cryptography and zero-knowledge proofs;
  * Experience with designing and/or implementing large-scale distributed systems;
  * Any experience, professional or amateur, working in security engineering, appsec, or other information security roles is a plus (hackers are welcome!).

Responsibilities:

* Design, build, and maintain the core infrastructure powering our decentralized network;

* Implement cryptographic primitives and write robust, security-first code that will run in high-risk, adversarial environments;

* Improve engineering standards, tooling, and processes;

* Review team members’ code to collaboratively identify bugs and correct security issues;

* Help establish threat models against our decentralized network and protocol.

Competencies:

* Deep knowledge of Python, Go, Javascript, Rust, or C;

* Familiarity with public-key cryptography and related cryptosystems, and the OpenSSL APIs;

* Familiarity with DevOps, CI/CD processes (CircleCI experience a plus!), git, automated testing (such as pytest), and other software development best practices;

* Verbal and written technical English.

Bonus Points:

* Experience with AWS deployment and management (IAM, ec2, s3, etc);

* Familiarity with applied cryptography literature/papers, and advanced cryptographic concepts like lattice-based cryptography and zero-knowledge proofs;

* Experience with designing and/or implementing large-scale distributed systems;

* Experience working with Ethereum, other blockchain ecosystems, or managing any decentralized network at scale (not necessarily blockchain-related) is a major plus;

* Deep understanding or knowledge of consensus networks and protocols, specifically as they relate to cryptocurrencies and other blockchain applications;

* Any experience, professional or amateur, working in security engineering, appsec, or other information security roles is a major plus (hackers are welcome!).

If you’re a good fit, send your CV and a code sample that you’re proud of to [email protected]. No recruiters, please.

About NuCypher: We believe that unconditional privacy is a fundamental human right, and NuCypher was founded to empower individuals to assert that right in the digital age. We’re building the tools and infrastructure to protect this right by combining new advances in cryptography with decentralization.

Umbral is a split-key version of PRE, which splits the re-encryption key into many shares. A threshold number of these shares are then required to re-encrypt the data (similar to Shamir’s Secret Sharing).

Here's a post describing split-key threshold proxy re-encryption in slightly more detail: https://blog.nucypher.com/unveiling-umbral-3d9d4423cd71

NuCypher is a data privacy layer for blockchain, decentralized applications, and other distributed systems. We're back by Y Combinator (S16), Polychain Capital, and many other leading institutional investors.

We're looking for a scientist with expertise in fully homomorphic encryption (FHE) to assist with our research efforts on performance improvements and potential applications for smart contracts. Familiarity with related technologies like proxy re-encryption (PRE) and multi-party computation (MPC) is helpful.

Ideally, candidates have an understanding of the surrounding issues and problems and have an interest in identifying potential solutions. Due to the unproven and highly theoretical nature of these schemes, candidates should be willing to pivot research when practical solutions cannot be found.

Please email [email protected] with your CV and any previous research/publications you're able to share.

Do you have plans for engineering kits?

However, it is not the case for our Hadoop scheme (nor our future support for structured database). In these cases, there is no round-tripping required. In fact, it's significantly more performant than existing Transparent Data Encryption in Hadoop, from both a latency and key rotation perspective.

We'll likely release a paper describing this new scheme later in the year as well as publish at some conferences.

/s/legacy/structured

EDIT: Here is the full-length one - https://www.oreilly.com/ideas/brendan-eich-javascript-fluent...

Pipe (https://pipe.com/), a secure browser-to-bowser file transfer service without a file size limit.

Excalibur (https://getexcalibur.com/en), seamless authentication to any legacy system such as PC/Mac/webpage to help mankind move away from passwords using a phone as a security token.

Cyber DriveWare (http://www.cyberdriveware.com/), a company that provides enterprises and critical infrastructures the ability to protect themselves against malware related business disruption attacks via patent-pending paradigm consisting of filter drivers and unique meta-data analysis.

Startups want a JavaScript version so they can use it in-browser. And they are more interested in full-text search than other types of queries.

Enterprises are big on integration with existing stuff (Microsoft SQL Server, SharePoint, etc.) and using it as a CASB-esque solution.

ZeroDB is an end-to-end encrypted database that lets you operate on data while it's encrypted.

Demo video: https://vimeo.com/128047786

Question: We want to sell to large enterprises (financial services, healthcare, saas providers, etc.). The common advice is to start with SMBs/startups and get traction that way before going upmarket to enterprises. How can we balance that with the fact that what SMBs are asking us for is very different from what enterprises have told us they'd like in a fully-baked product?