Blog
Engineering and research notes on the cryptography, privacy mechanisms, and network architecture behind Tessera.
All · Protocol Design · Security · Benchmarks
The Authentication vs Metadata Privacy Gap
Signed messaging authenticates but leaks metadata. Metadata-private messaging hides metadata but can't authenticate. Tessera is the first to do both.
Jun 29, 2026How (ε,δ)-Differential Privacy Hides Your Messaging Metadata
Proportional cover gives zero privacy. The shifted-Laplace mechanism, ε and δ explained, bandwidth cost, and empirical AUC validation at ε=0.1.
Jun 29, 2026Schnorr Zero-Knowledge Proofs for Sender Authentication
How Schnorr/Fiat-Shamir works, why it's zero-knowledge, the forking-lemma security argument, and why Tessera chose Schnorr over alternatives.
Jun 29, 2026Per-Recipient Blinded Pseudonyms: How Tessera Achieves Cross-Recipient Unlinkability
The linkability problem with raw ZK proofs, the Y'=Y+tG blinding solution, enrolment model, and cross-delivery unlinkability.
Jun 29, 2026Bucketed Broadcast Routing: A Decentralized Alternative to Mixnets
How mixnets work and why they need trusted mixes. Tessera's bucketed broadcast approach: commitments, Bloom fingerprints, and P2P gossip.
Jun 29, 2026Benchmarking Tessera: 0.85ms Proofs, 326 ops/s Throughput, 0% Forgery
The seven experiment harnesses (E1-E7), headline numbers, and how to reproduce every benchmark with a single uv command.