This year I will try to communicate more. Here is what motivates me to work on @tlsnotary, which I consider to be working on @ethereum, and why I think it continues to be the best use of my time. you may now pass go tlsnotary.org/blog/2026/01/0…

My thoughts: Peer offers low friction exchange between uninteroperable financial ledgers, that is a great product. A product worth being excited about. TEEs offer strong integrity and censorship resistance with or without zkTLS. They also ostensibly provide confidentiality, but that is practically unfalsifiable. A TEE is a computer sitting in a data center somewhere far away from a user, which a vendor (e.g. Intel) promises they: 1) put a lot of work into making the physical hardware difficult to compromise 2) securely manage a master key which is only ever used to attest to keys burned into their TEEs When a user sends private information to this remote machine, they are trusting (after hopefully actually verifying the TEE's certificate) the integrity of a long chain of claims which they can not verify. These kinds of trust chains offer an easy target for sufficiently motivated adversaries, including (lawfully administered) state surveillance. One could argue that to be true even about ones own machine and the software running on it, which is true to an extent but that is a sort of trust nihilism which I don't accept. Observability and locality matters. Hopefully local AI will help here. But, if an approach which minimizes the trust unpinning user privacy also imposes significant cost on the user and the developers, it is hard to justify finger wagging. It first and foremost must be a scalable product. This is the classic dilemma with all privacy tech. Peer meaningfully offers user sovereignty, right now, and people are using it. They have determined (rightly or wrongly) the friction imposed by using zkTLS is a material hindrance to scaling the product, i.e. offering financial freedom to more people. Yes, this is the pragmatist argument that CROPS builders dread. The solution is to ruthlessly drive the friction imposed by CROPS software to 0 so there is no trade-off. The TLS transcript commitment problem is solved. MPC-TLS offers reasonable performance suitable for high-stake applications, and proxy commitment offers TEE-level performance with a marginal integrity assumption for the verifier. The friction frontier is in selective disclosure: we need a fast client-side zkVM which is easily programmable using general purpose programming languages. Performance and programmability. That's why we're building SpeakUp x.com/PrivacyEthereum/status…

Interesting! eprint.iacr.org/2026/925

SpeakUp is built for exactly the setting TLSNotary operates in: a low-power device running the prover, online with a designated verifier. A fast client-side zkVM is the missing piece for scaling web proofs.

SpeakUp: a new zkVM we're prototyping for private, client-side proving of WebAssembly programs - built to run on low power devices such as mobile phones and browsers. The underlying proof system explore different tradeoffs for different use cases from mainstream zkVMs. SpeakUp is interactive, and uses vector oblivious linear evaluation (VOLE), which provides a fast linear-time prover and post-quantum security at the cost of larger proofs. See the early design draft below, we're looking for public feedback 👇 pse.dev/blog/introducing-spe…

Who's your #1 Spotify artist? Prove it onchain. We pay the gas.

as of last friday, I no longer work at the EF nothing but respect for the brilliant people i worked with over the last 5 years on network upgrades funding efforts I intend to continue working on @ProtocolGuild and Ethereum political economy as long as funding is available

Here are my @eth_proofs Beast mode slides: leonardoalt.github.io/talk-p… tl;dr ZK WebAssembly gud, about to be even faster

I already pledged to CROPS in January tlsnotary.org/blog/2026/01/0…

I've been saying this: WASM custom ISA is how we employ compilers to make general purpose zkVMs even faster. Now we can prove it.

I was recently at Real World Crypto (that's crypto as in cryptography) and the associated side events, and one thing that struck me was that it was a clarifying experience in terms of understanding *what blockchains are for*. We blockchain people (myself included) often have a tendency to start off from the perspective that we are Ethereum, and therefore we need to go around and find use cases for Ethereum - and generate arguments for why sticking Ethereum into all kinds of places is beneficial. But recently I have been thinking from a different perspective. For a moment, let us forget that we are "the Ethereum community". Rather, we are maintainers of the Ethereum tool, and members of the {CROPS (censorship-resistant, open-source, private, secure) tech | sanctuary tech | non-corposlop tech | d/acc | ...} community. Going in with zero attachment to Ethereum specifically, and entering a context (like RWC) where there are people with in-principle aligned values but no blockchain baggage, can we re-derive from zero in what places Ethereum adds the most value? From attending the events, the first answer that comes up is actually not what you think. It's not smart contracts, it's not even payments. It's what cryptographers call a "public bulletin board". See, lots of cryptographic protocols - including secure online voting, secure software and website version control, certificate revocation... - all require some publicly writable and readable place where people can post blobs of data. This does not require any computation functionality. In fact, it does not directly require money - though it does _indirectly_ require money, because if you want permissionless anti-spam it has to be economic. The only thing it _fundamentally_ requires is data availability. And it just so happened that Ethereum recently did an upgrade (PeerDAS) to increase the amount of data availability it provides by 2.3x, with a path to going another 10-100x higher! Next, payments. Many protocols require payments for many reasons. Some things need to be charged for to reduce spam. Other things because they are services provided by someone who expends resources and needs to be compensated. If you want a permissionless API that does not get spammed to death, you need payments. And Ethereum ZK payment channels (eg. ethresear.ch/t/zk-api-usage-… ) is one of the best payment systems for APIs you can come up with. If you are making a private and secure application (eg. a messenger, or many other things), and you do not want to let people to spam the system by creating a million accounts and then uploading a gigabyte-sized video on each one, you need sybil resistance, and if you care about security and privacy, you really should care about permissionless participation (ie. don't have mandatory phone number dependency). ETH payment as anti-sybil tool is a natural backstop in such use cases. Finally, smart contracts. One major use case is _security deposits_: ETH put into lockboxes that provably get destroyed if a proof is submitted that the owner violated some protocol rule. Another is actually implementing things like ZK payment channels. A third is making it easy to have pointers to "digital objects" that represent some socially defined external entity (not necessarily an RWA!), and for those pointers to interact with each other. *Technically*, for every use case other than use cases handling ETH itself, the smart contracts are "just a convenience": you could just use the chain as a bulletin board, and use ZK-SNARKs to provide the results of any computations over it. But in practice, standardizing such things is hard, and you get the most interoperability if you just take the same mechanism that enables programs to control ETH, and let other digital objects use it too. And from here, we start getting into a huge number of potential applications, including all of the things happening in defi. --- So yes, Ethereum has a lot of value, that you can see from first principles if you take a step back and see it purely as a technical tool: global shared memory. I suspect that a big bottleneck to seeing more of this kind of usage is that the world has not yet updated to the fact that we are no longer in 2020-22, fees are now extremely low, and we have a much stronger scaling roadmap to make sure that they will continue to stay low, even if much higher levels of usage return. Infrastructure for not exposing fee volatility to users is much more mature (eg. one way to do this for many use cases is to just operate a blob publisher). Ethereum blobs as a bulletin board, ETH as an asset and universal-backup means of payment, and Ethereum smart contracts as a shared programming layer, all make total sense as part of a decentralized, private and secure open source software stack. But we should continue to improve the Ethereum protocol and infrastructure so that it's actually effective in all of these situations.

Our goal is definitely not to have flexibility to replace the hash many times. We want a protocol that lasts. The main reason why I find anything elliptic curve uninteresting in 2026 pretty much is quantum risk. Don't want to deploy now and have to change again in 3-8 years.

so what's the plan for when PQ is a requirement and we no longer have constant sized proofs?

We've had to work through a lot of difficult issues in the debate over market structure in Congress (token classification, yield, shared agency authority). But we are now getting to the heart of the matter in the Senate: Whether Americans will be allowed to build and use permissionless private infrastructure in the US free from unwarranted prosecution (protected by the BRCA provisions in Clarity) or whether "national security interests" and "ease of prosecution" will trump those rights and protections. Another way to put this: Do you want the underlying pipes for all financial transactions to look like they have for decades: wholly owned and controlled by large banking interests and freely surveilled without warrants or reasonable suspeicion by corporations and the government? Or do you think that money and assets should travel safely and privately on free and open infrastructure that's built and maintained by the people for the people? Watch carefully who comes out on which side. Do you want some Republican to instantly know that you paid for an abortion? Do you want some Democrat to instantly know you bought a gun? Do you want either to be able to freely and arbitrarily cut you off from the global economic rails without trial or oversight? Or do you still believe in American values: privacy, liberty, and the rule of law?

wen client-side zkVM?

The "There’s an app for that" era is officially over. 💀 We’ve reached Peak App Fatigue. Users don’t want to manage 50 different icons, subscriptions, and notification badges anymore. They want outcomes, not interfaces. So, why build apps at all? Because the "App" is changing from a Destination to a Data Source. The New Stack: 1. The User: Expresses intent (e.g., "Book a flight to NYC and find a gym nearby with a squat rack.") 2. The AI Agent: The new OS. It navigates the web so the user doesn't have to. 3. The App: The specialized "worker" that provides the API, the logic, and the specific utility the AI needs to fulfill the request. We aren't building for human eyes anymore; we’re building for Machine Consumption. If your app doesn't have a robust API or "Agentic" compatibility, you aren't just losing users - you’re becoming invisible to the AI they use to run their lives. The purpose of building an app today isn't to steal 10 minutes of screen time. It’s to provide the most reliable, permissionless infrastructure for an AI to get the job done. 🏗️🤖

skynet is going to happen because humans like to screw around and see what happens, not some elaborate corpo-military consipiracy

New benchmarks for TLSNotary alpha.14 are out. What do the performance improvements actually look like in practice? We measured end-to-end proving time on real TLS sessions, native and WASM, across varying bandwidth, latency, and response sizes.

After years of attending @fosdem, I’m finally stepping on stage. Join me on Sunday, Feb February 1 in Brussels in the Decentralized Internet & and Privacy devroom for a talk on Verifiable HTTPS using TLSNotary fosdem.org/2026/schedule/eve…