Filippo Valsorda

I'm a cryptography engineer and open source maintainer. I've been in charge of cryptography and security on the Go team at Google until 2022, and was on the Cryptography team at Cloudflare until 2017. Read more about what I do and how we might know each other.

I am FiloSottile on GitHub, Twitter, and Twitch, and @filippo@mastodon.social on Mastodon.

I attended the Recurse Center batches Fall 2013 and Fall 2 2017.

Words

All I've written since 2013 is at words.filippo.io.

Cryptography Dispatches is my lightly edited cryptography newsletter.

Software

mkcert
A tool to easily generate TLS certificates for development

age
A simple, modern, and secure file encryption tool

yubikey-agent
The easiest way to use a PIV token with SSH

filippo.io/edwards25519 and filippo.io/nistec
The standard library safe(-ish) low-level APIs, repackaged and extended for external use

filippo.io/intermediates
Preloaded WebPKI intermediate CA certificates to connect to misconfigured servers

filippo.io/cpace
An experimental implementation of the CPace PAKE instantiated over ristretto255

passage
A password-store fork that uses age instead of GnuPG

captive-browser
Browser launcher with DNS proxy for accessing captive portals despite custom DNS settings

homebrew-musl-cross
Homebrew Formula for musl-cross-based Linux cross-compilers

Contacts

Filippo Valsorda
9450 SW Gemini Dr #52960
Beaverton, Oregon 97008-7105

hi@filippo.io

filippo@golang.org

Other

/fakenews
/behindthesofa
/linux-syscall-table

ssh whoami.filippo.io

Vulnerability tests

/Heartbleed
/Ticketbleed
/CVE-2016-2107
/Badfish