Serious Cryptography by Jean-Philippe Aumasson

Serious Cryptography book cover

Why read the book?

Jean-Philippe Aumasson wrote Serious Cryptography. He holds a PhD in cryptography and works in the field. The book first came out in 2017. A second edition appeared in 2024 with updates. Aumasson explains modern encryption in a clear way. He covers topics like authenticated encryption, secure randomness, hash functions, block ciphers, and public-key systems such as RSA and elliptic curves.

The book breaks down hard math without too much detail. It shows how these tools work in real systems. Aumasson stresses that cryptography fails in practice if not done right. He gives examples of common mistakes. Readers learn secure ways to use crypto. The book skips old weak methods like DES or MD5. It includes TLS 1.3 and post-quantum ideas.

Aumasson wrote it for people who build systems, not just experts. He adds code examples and warnings. The book helps developers avoid bad crypto. It fits today's needs in security. Readers finish with a strong base to apply crypto well. Aumasson warns about subtle errors that break systems. He gives hope that good knowledge fixes many issues.

Favourite quote

It is beneficial if a model overestimates attackers’ capabilities because it helps anticipate future attack techniques — only the paranoid cryptographers survive.

What I Loved

Serious Cryptography gives a straight and useful view of modern crypto. Aumasson tells how algorithms work and how to use them right. He points out real mistakes that cause big problems. The book covers key primitives with clear explanations.

Aumasson talks about randomness and why it matters so much. He asks why bad random choices break encryption. He ties this to actual attacks. The book makes you think about secure design. It calls for care in every step. Aumasson writes in a direct style that stays practical. His voice comes from real work in the field. He shares examples from systems that failed or succeeded. Readers see the cost of small errors.

Aumasson looks at how protocols like TLS evolve. He shows post-quantum threats and fixes. The book has parts on hash functions and signatures. It talks about cryptocurrency crypto too. Aumasson gives steps to build safe systems. He offers hope that better practices stop spectacular failures. The end pushes readers to apply what they learn.

Key Takeaway

Strong cryptography needs constant caution because even tiny mistakes can ruin security.

Enjoyed this post?

Well, you could share the post with others, follow me with RSS Feeds, send me a comment via email, and/or leave a donation in the Tip Jar.

Tags

Category:

Person:

Year:

#100DaysToOffload 21 of 100
Book goal 6 of 52