Sovereign Cryptography Guide

Layered cryptography curriculum and resource index, curated for long-horizon, state-grade adversaries, Bitcoin-native systems, and anti-backdoor threat models.

Operating Assumptions & Discipline

Everything below assumes: global passive/active adversaries, long-term confidentiality, post-quantum migration pressure, and the need to remain independent of vendor, government, and platform capture.

Threat model & philosophy

Discipline — no home-rolled primitives, minimal algorithm surface, lean libraries, reproducible builds, and explicit deprecation plans.
Signal over novelty — prefer boring, widely deployed, formally analyzed constructions over experimental systems unless isolation and failure paths are explicit.
Bitcoin-native bias — all design choices evaluated against the bar set by Bitcoin's security model, incentives, and openness.

Hard rule: you never design your own cipher, MAC, hash, curve, or protocol from scratch for production. All sovereignty comes from composition, architecture, and implementation rigor, not new primitives.

Baseline: “Right Answers” & Hygiene

First, lock in a default stack of primitives and libraries that are hard to misuse and sane for 95% of use cases.

Canonical “right answers”

Cryptographic Right Answers — opinionated baseline on AEAD, key derivation, password hashing, transport security, etc. baseline
Post-Quantum Cryptographic Right Answers — updated guidance for NIST PQC transition and hybrid schemes. pqc

Implementation defaults

libsodium Documentation — modern, misuse-resistant crypto library; use this as the default where possible. library
libsodium (GitHub) — source, issues, and examples, plus bindings for many languages.
Noise Protocol Framework — composable patterns for authenticated key exchange; basis of many modern secure channels. protocol
age: simple, modern file encryption — batteries-included scheme for encrypting files with sane crypto choices.

Foundations: Intuition, Math, & Classical Primitives

Establish a rigorous but practical understanding of symmetric crypto, public-key systems, and security definitions.

On-ramp / overview

Crypto 101 — free, introductory book/course covering core concepts, attacks, and practical examples. intro
Cryptography 101 (Menezes) — lecture notes by a coauthor of HAC; bridges from intro to serious math.

Core textbooks

Cryptography: Theory and Practice (Stinson & Paterson) — bridges practice with solid theory; part of the original resource set. text
Introduction to Modern Cryptography (Katz & Lindell) — standard on definitions, reductions, and formal security.
Handbook of Applied Cryptography (Menezes, van Oorschot, Vanstone) — free reference; detailed coverage of classical algorithms.

Stanford & academic courses

Dan Boneh: Applied Cryptography (online course) — rigorous, widely used course; includes video lectures, slides, and problem sets. course
Cryptography I (Coursera, Dan Boneh) — accessible MOOC form of the core Stanford crypto course.

Engineering, Protocols & System Design

Move from primitives to real-world protocols, threat modeling, and system-level failure modes.

Primary engineering texts

Real-World Cryptography (David Wong) — practical treatment of modern primitives, protocols, and deployment pitfalls. core
Security Engineering (3rd ed.) (Ross Anderson) — systems-level security, economics of security, and real attack case studies.
A Graduate Course in Applied Cryptography (Boneh & Shoup) — in-depth coverage of modern cryptographic constructions with proofs.

Critical blogs / ongoing updates

A Few Thoughts on Cryptographic Engineering (Matthew Green) — analysis of protocols, standards, and real-world crypto failures. blog

Awesome & survey lists

Awesome Cryptography — curated index of libraries, protocols, and learning materials. index
Awesome Crypto Papers — curated papers, useful for diving into specific primitives or constructions in depth.

Bitcoin-Native, Protocols & Network Privacy

Study the live systems that already run at planetary scale under adversarial conditions.

Bitcoin & consensus cryptography

Bitcoin and Cryptocurrency Technologies (book, free PDF) — canonical text on Bitcoin mechanics, consensus, and basic crypto in the protocol. bitcoin
Bitcoin Core Documentation — reference for consensus and P2P protocol details; see especially script, transactions, and networking.
Lightning Network: BOLT Specifications — real example of HTLCs, onion routing, and channel management at scale. ln

Anonymity & transport

Tor Project — practical mix-style network; study design docs and threat models for global adversaries. network

Curves, ECC & Modern Public-Key

Understand how modern elliptic-curve systems are chosen and where the landmines are.

Curve selection & safety

SafeCurves: Choosing Safe Curves for ECC — criteria and analysis of standard curves versus safer alternatives such as Curve25519. ecc
RFC 7748: Elliptic Curves for Security — defines X25519 and X448; baseline for modern key exchange.

Post-Quantum, Lattices & New Primitives

Track the emerging standardization of lattice-based schemes and understand migration paths without premature deployment.

Official standards & overviews

NIST FIPS 203: ML-KEM — primary standard for post-quantum key encapsulation (Kyber-derived). pqc
NIST: Post-Quantum Cryptography FIPS Approved (overview) — summary of the approved PQC algorithms and their intended use.
Diving into NIST's new post-quantum standards — high-level explanation of ML-KEM, ML-DSA, and SLH-DSA.

Zero-Knowledge, zk-SNARKs & ZK Systems

For privacy-preserving systems, understand ZK at the level of math, protocols, and real implementations.

Conceptual introductions

Zero-Knowledge Proofs: An Illustrated Primer (Part 1) (Matthew Green) — intuitive explanation of ZK proofs with minimal math. zk
Zero-Knowledge Proofs: An Illustrated Primer (Part 2) — continues into more detail and applications.

Deep dive: zk-SNARKs

MoonMath Manual to zk-SNARKs (download) — comprehensive manual for the math and engineering behind zk-SNARKs. snarks
MoonMath Manual (GitHub) — repository with releases and updates.
ZK Whiteboard Sessions (ZK Hack) — video curriculum on ZK building blocks and protocols. video

ZK ecosystem overviews

Awesome Zero-Knowledge Proofs — curated list of ZK papers, libraries, and applications. index

Fully Homomorphic Encryption & Encrypted Compute

FHE is still specialized and expensive; treat it as experimental and niche, but track it as future infrastructure for encrypted compute.

Core libraries & docs

OpenFHE — open-source FHE library with multiple schemes (BFV, BGV, CKKS, etc.). fhe
OpenFHE Documentation — detailed docs and examples.

Survey & paper indexes

Awesome Homomorphic Encryption — curated list of FHE libraries, applications, and papers. index

Backdoors, Standards Capture & Crypto Wars

Cryptographic design is inseparable from political attempts to outlaw, backdoor, or co-opt it. These materials keep the context clear.

Historical & current crypto wars

The Crypto Wars: Governments Working to Undermine Encryption (EFF) — concise overview of state efforts to weaken commercial crypto. eff
Crypto Wars (overview) — high-level timeline of export controls, key escrow, and modern backdoor debates.

Backdoor mandates & critiques

Keys Under Doormats: Mandating Insecurity (Abelson et al.) — formal argument against “exceptional access” backdoors. paper

Narrative & history

Crypto: How the Code Rebels Beat the Government (Steven Levy) — narrative history of public-key cryptography and the first crypto wars. history

Design implication: treat all standards, libraries, and hardware as potentially compromised by political pressure. Use diverse implementations, open review, and minimum-trust architectures wherever possible.

Exploration Surfaces & Research Feeds

Use these as moving frontiers to pull in new results; never as direct production guidance.

Core awesome lists

Awesome Cryptography — broad index of crypto resources, libraries, and tools. index
Awesome Crypto Papers — paper-focused exploration surface.
Awesome Zero-Knowledge Proofs — ZK research and implementation landscape.
Awesome Homomorphic Encryption — FHE research and libraries.

Sequencing: Recommended Pass Through the Stack

High-level walk of the sequence; adapt to existing strengths, but keep the dependency order intact.

Phase 1 — Baseline & Hygiene — read Latacora's “Right Answers” posts, adopt libsodium, and choose Rust/Go as primary languages.
Phase 2 — Foundations — complete Crypto 101, then Katz & Lindell or Stinson/Paterson; use HAC as a reference.
Phase 3 — Protocol & Systems — work through Real-World Cryptography, Security Engineering, and Boneh's course; implement small protocols using Noise and libsodium.
Phase 4 — Bitcoin & Networked Systems — study Bitcoin & Cryptocurrency Technologies, Bitcoin Core docs, and Lightning BOLTs.
Phase 5 — Curves, PQC, ZK, FHE — selectively dive into SafeCurves, RFC 7748, FIPS 203, MoonMath, ZK Hack, and OpenFHE depending on target systems.
Phase 6 — Political Layer & Adversarial Context — absorb EFF's Crypto Wars materials, “Keys Under Doormats”, and Levy's Crypto to keep the geopolitical layer in view.

All links are external; keep local, offline mirrors for anything critical to long-term operation.

Implementation Guardrails

• Prefer libsodium (or well-audited equivalents).
• Avoid non-constant-time code for secret-dependent paths.
• Use formal specs (“right answers”) before touching any API.
• Assume eventual PQC migration; avoid hard-binding to legacy public-key.