- Justin ( @jlh@lemmy.jlh.name ) 5•1 month ago
Which algorithms have they endorsed? Did they make any changes to them?
I saw another reporting on the same topic, apparently there are 3 algorithms developed.
- katja ( @katja@lemmy.blahaj.zone ) 4•1 month ago
This is a sure sign that the NSA have been reading everything encrypted with standard cryptos for quite some time but they see that the opposition (China in this case) is showing signs of catching up. Can’t have that, even if it means losing capability for themselves. They have other ways in so the drop in capability is not as big as one would think.
I personally wouldn’t trust anything but one time cryptos to be safe and I don’t trust any algorithm from that source to be safe. It certainly should be and it is very much in their and our interest to make sure that it is, but the possibility that they are trying to eat the cake and pull a fast one is frighteningly far from zero. It would be monumentally stupid to try because shit like that always gets out and that would jeopardize every system in the world. Stupid isn’t exactly in short supply these days.
- Justin ( @jlh@lemmy.jlh.name ) 9•1 month ago
Quantum computers are not advanced enough to break RSA/EC yet. NSA might have some secret backdoors, but the recent focus on quantum-resistent encryption from both the public and private sectors (see TLS and Mullvad) has nothing to do with China.
What is a one-time crypto, and how does it allow you to avoid the use of quantum-vulnerable asymmetric encryption such as the algorithms used for HTTPS?
- AbelianGrape ( @AbelianGrape@beehaw.org ) 4•1 month ago
I’ve only ever seen “one-time” in cryptography to refer to One-Time Pads (OTP). They are literally uncrackable (because every possible plaintext could be encoded by every possible ciphertext) but they achieve that by using a shared private key. The cipher becomes attackable if the key is re-used, hence the “one-time.”
But that key has to be exchanged somehow, and that exchange can be attacked instead. Key exchange algorithms can’t necessarily transfer every possible OTP which means eavesdropping on the exchange would make an OTP attackable. So the best option we know of that doesn’t require secret meetings to share OTPs* really is to use RSA encryption. Once we have efficient quantum-resistant schemes, they’ll be the best option we know.
* and let’s be honest, secret meetings can be eavesdropped on as well.
- karlhungus ( @karlhungus@lemmy.ca ) 2•1 month ago
ECC encryption seems semi preferred now a days i thought
- 𝕽𝖚𝖆𝖎𝖉𝖍𝖗𝖎𝖌𝖍 ( @sxan@midwest.social ) 9•1 month ago
There are already quantum resistant algorithms available as open source libraries, and some tools which already use them. It’s nice to see some standards emerging, although I’ll be more confident after external reviews pronounce them “clear.”
- GetOffMyLan ( @GetOffMyLan@programming.dev ) 3•1 month ago
What they actually do is record everything encrypted and wait for computers to get fast enough to crack it.