I'm a cryptography engineer and open source maintainer. I've been in charge of cryptography and security on the Go team at Google until 2022, and was on the Cryptography team at Cloudflare until 2017. Read more about what I do and how we might know each other.
I am FiloSottile on GitHub, Twitter, and Twitch, and @filippo@mastodon.social on Mastodon.
I attended the Recurse Center batches Fall 2013 and Fall 2 2017.
All I've written since 2013 is at words.filippo.io.
Cryptography Dispatches is my lightly edited cryptography newsletter.
mkcert
A tool to easily generate TLS certificates for development
age
A simple, modern, and secure file encryption tool
yubikey-agent
The easiest way to use a PIV token with SSH
filippo.io/edwards25519
and filippo.io/nistec
The standard library safe(-ish) low-level APIs, repackaged and extended for external use
filippo.io/intermediates
Preloaded WebPKI intermediate CA certificates to connect to misconfigured servers
filippo.io/cpace
An experimental implementation of the CPace PAKE instantiated over ristretto255
passage
A password-store fork that uses age instead of GnuPG
captive-browser
Browser launcher with DNS proxy for accessing captive portals despite custom DNS settings
homebrew-musl-cross
Homebrew Formula for musl-cross-based Linux cross-compilers
Filippo Valsorda
9450 SW Gemini Dr #52960
Beaverton, Oregon 97008-7105
hi@filippo.io
filippo@golang.org
/fakenews
/behindthesofa
/linux-syscall-table
ssh whoami.filippo.io