Skills / Engineering / Constant-Time Crypto Analyzer

Constant-Time Crypto Analyzer

Detect timing side-channel vulnerabilities in cryptographic code across C, C++, Go, Rust, Swift, Java, JS/TS, Python, and more. Flags secret-dependent branches, division on secrets, and non-constant-time comparisons.

Timing side channels leak secrets through how long code takes to run. This skill reviews cryptographic implementations for secret-dependent branches, table lookups, and division, and explains how to rewrite them in constant time across a dozen languages.

security cryptography side-channel constant-time audit

When to use

Use when implementing or reviewing cryptographic code, when you encounter division or branches on secret values, or for any constant-time programming question in C/C++, Go, Rust, Swift, Java, JS/TS, Python, and others.

Examples

Review crypto code

Find timing leaks in a comparison

Review this MAC verification for timing side channels and rewrite it to be constant-time

Audit secret handling

Flag secret-dependent branches

Scan this Rust crypto module for secret-dependent branches and division on secrets
Added to wishlist