OSCW 2025: Sofia, Bulgaria
OSCW 2025 took place before Real World Crypto on 25 March 2025 at the Hilton in Sofia, Bulgaria.
Archived Talks
| Time | Session Title | Session Leader | Content |
|---|---|---|---|
| 9:30 - 9:50 | Registration and Coffee (provided) | ||
| 9:50 - 10:00 | Welcome | ||
| 10:00 - 10:45 | Cryptographic Specifications and Open Source Implementations ⁱ | Filippo Valsorda (he/him) | |
| 10:45 - 11:30 | Shufflecake: Plausible Deniability in 2025 | Tommaso Gagliardoni (he/him) | [video] [slides] |
| 11:30 - 11:45 | Break | ||
| 11:45 - 12:15 | Core Dump Protection in Tink | Thomas Holenstein (he/him) | |
| 12:15 - 12:45 | Lessons learned from Integrating Lox Anonymous Credentials into Tor | Lindsey Tulloch (she/her) | |
| 12:45 - 13:45 | Lunch (provided) | ||
| 13:45 - 14:15 | A Deep Dive Into the Nym Mix Network Audit | Nadim Kobeissi | [slides] |
| 14:15 - 15:00 | Closed Source Cryptography | Lukas Zobernig | [slides] |
| 15:00 - 15:15 | Break | ||
| 15:15 - 16:00 | A Practical Introduction to zkVMs ⁱ | Victor Snyder-Graf (he/him) | [resource][slides] |
Note: ⁱ denotes an Interactive or Workshop Session
Speakers
Tommaso Gagliardoni
Tommaso Gagliardoni is a mathematician, cryptographer, and cybersecurity expert. He published peer-reviewed papers in the areas of cryptography, quantum security, and privacy, and spoke at many international conferences in these fields (CRYPTO, EUROCRYPT, ASIACRYPT, CCS, Black Hat Europe, DEF CON Demo Labs, etc.). He is known, among other achievements, for his collaborations in solving the longstanding problem of adaptive quantum authentication (EUROCRYPT 2018, TQC 2019) and breaking the security of ISO-standard smart card protocol PLAID (Real World Crypto 2015, SSR 2015). As a subject expert, he serves as a Program Committee member at academic conferences such as PQCRYPTO, and collaborates with the World Economic Forum, NIST, and other official agencies in the context of international treaties, development programs, and standardization processes on emerging technologies. Expert in blockchain, Web3 and DeFi, Tommaso has performed cryptographic code audits for clients such as Binance, Coinbase, ING, Swiss Post. Additionally, he has a background in privacy hacktivism, investigative journalism, and ethical hacking, speaking at venues such as the international Journalism Festival and the E-Privacy Meeting. Tommaso obtained a PhD at the Technical University of Darmstadt, Germany, with a dissertation on the quantum security of cryptographic primitives. He was postdoctoral researcher at IBM Research Zurich and cryptography tech lead at Kudelski Security before joining Horizen Labs in 2025, where he is currently senior research scientist.
Thomas Holenstein
Thomas Holenstein obtained his Ph.D. from ETH Zürich in 2006, advised by Ueli Maurer. He then spent two years as a postdoc at Microsoft Research, and one year as a postdoc at Princeton University. After this, he was a professor at ETH Zürich for 6 years, and then joined Google, where he currently works on the cryptographic library Tink.
Nadim Kobeissi
As a Senior Applied Cryptography Auditor at Cure53, Nadim leverages his extensive experience in software security audits to ensure the integrity of critical cryptographic systems. Nadim has contributed to over 250 software security audits, both independently and through partnerships with Cure53. Additionally, he is the Director at Symbolic Software, where he publishes research software for applied cryptographers and indie video game projects. Nadim is passionate about advancing the field of cryptography and making it more accessible to developers and researchers.
Victor Snyder-Graf
Victor is a hacker and software engineer from Seattle, WA, USA with interests in a wide range of cryptography. Victor work(s) at RISC Zero on a zkVM, as explained in this session, and is personally interested in anonymous credentials and embedded devices.
Lindsey Tulloch
Lindsey Tulloch is a senior software developer and privacy and security researcher working on the anti-censorship team at The Tor Project. She is a graduate of the Cryptography Security and Privacy (CrySP) lab at the University of Waterloo (MMath 2022), where she worked under Ian Goldberg. Her graduate work on Lox, a privacy preserving, reputation based bridge distribution system to support censorship circumvention efforts, won the 2023 Andreas Pfitzmann Best Student Paper Award and is currently being integrated into Tor Browser.
Filippo Valsorda
Filippo is a cryptography engineer and professional open source maintainer. He maintains the cryptography standard library of the Go programming language. He’s been the lead of the Go Security team at Google until 2022, and was on the Cryptography team at Cloudflare until 2017.
Lukas Zobernig
Lukas Zobernig is a cryptographer at Google and works on post-quantum cryptography and formal verification. Lukas holds a PhD in mathematics from the University of Auckland and previously worked there as a postdoc with a research focus on the intersection of mathematics and cryptography.
Organizers
- Cindy Lin, Google
- Ioana Nedelcu, Google
- Elizaveta Tretiakova, Google
- Anna Weine, Mozilla
Code of Conduct
All participants are expected to adhere to our Community Guidelines. The event organizers will be available to address any Community Guideline breaches and may be reached at organizers@oscwork.shop.