Crypto attacks and defenses

This training covers all the important notions of modern cryptography, including:

  • Ciphers, hash functions, key protocols
  • Formal security notions and attack models
  • Randomness generation and possible vulnerabilities
  • Elliptic-curve cryptography

We also present the most relevant and recent applications, including:

  • Transport Layer Security (TLS)
  • Passwords protection
  • Secure mobile messaging
  • Bitcoin and blockchain technologies
  • Quantum computing and post-quantum cryptography

The two-day variant of the training features hands-on sessions where participants learn how to put the notions and tools encountered previously into practice by being challenged to find, exploit, and fix vulnerabilities in cryptographic software.

Blockchain theory and practice

This training was designed for novices to blockchain technologies, and starts with the fundamental technical notions:

  • Basic cryptographic concepts
  • Bitcoin and blockchains
  • Ethereum and smart contracts
  • Decentralized applications

We then discuss the practical aspects and their risks:

  • Security bugs in blockchain systems, based on real examples
  • The different types of wallets, their pros and cons
  • How to create a token, from the simplest to the most complex way
  • The market and trading of crypto tokens

The two-day variant of this training also includes lectures about legal and regulatory aspects of blockchain technology and is organized jointly with experienced lecturers from a well-known Swiss financial institution.


On Demand

Date and location negotiable
Ten participants minimum



Dr. Jean-Philippe Aumasson

Jean-Philippe (JP) Aumasson is Principal Research Engineer at Kudelski Security, in Switzerland. He obtained his PhD in cryptography from EPFL in 2010. JP designed the popular cryptographic functions BLAKE2 and SipHash, and the new authenticated cipher NORX. He presented at Black Hat, DEFCON, RSA, and other international conferences. He initiated the Crypto Coding Standard and the Password Hashing Competition projects, wrote the books The Hash Function BLAKE (Springer, 2015) and Serious Cryptography (No Starch Press, 2017). JP tweets as @veorq.

Dr. Philipp Jovanovic

Philipp Jovanovic is a post-doctoral researcher at the Swiss Federal Institute of Technology Lausanne (EPFL), in Switzerland. He obtained his PhD in cryptography from the University of Passau, Germany, in 2015. Philipp designed several cryptographic algorithms and protocols, such as NORX, OPP/MRO, CoSi, ByzCoin, or RandHound. He is actively involved in the development of open source projects like the kyber crypto library or the cothority framework for scalable, decentralized, cryptographic protocols. Philipp is an IC3 member and works as an adviser to the DFINITY project. His research is published regularly at top crypto/security conferences such as IEEE S&P, USENIX Security, or EUROCRYPT, and he is frequently active at non-academic events like the Chaos Communication Congress, Troopers, or dotSecurity. Philipp tweets as @daeinar.

Previous sessions

Event Location Dates
Insomni'hack Geneva, Switzerland Mar 19-20, 2019
Facebook (Internal) Menlo Park, USA Jan 24-25 & 28-29, 2019
HS.T Redwood City, USA Nov 26-27, 2018
Blockchain Theory and Practice (Independent) Lausanne, Switzerland May 30, 2018
Security Training Berlin (Independent) Berlin, Germany Mar 19-20, 2018
Google (Internal) Zurich, Switzerland Jan 24-25, 2018
Black Hat Europe 2017 London, United Kingdom Dec 4-5, 2017
Crypto Attacks and Defenses (Independent) Lausanne, Switzerland Sep 30, 2017
Troopers 2017 Heidelberg, Germany Mar 20-21, 2017
Troopers 2016 Heidelberg, Germany Mar 14, 2016