[Cryptography] Has quantum cryptanalysis actually achieved anything?
Agathos
agathos at firemail.cc
Mon Mar 10 22:22:45 EDT 2025
On Mon, Mar 03, 2025 at 11:38:52AM +0000, Peter Gutmann wrote:
> Posted on behalf of Ben Laurie <ben at links.org> who's having some problems posting:
>
> On Wed, 26 Feb 2025 at 18:59, Peter Gutmann <pgut001 at cs.auckland.ac.nz<mailto:pgut001 at cs.auckland.ac.nz>> wrote:
> >What the switch to PQC is doing is throwing away all of that evolution over
> >time and starting again with a new set of bugs, mistakes, errors,
> >cryptalanytical attacks, and problems that we can spend the next 30-40 years
> >trying to fix. It's a major net loss for security to defend against an attack
> >that no-one has been able to demonstrate exists. We may as well try and
> >implement Colin O'Flynn's Time Travel Resistant Cryptography (TTRC) while
> >we're at it, in case someone invents a time machine.
For certain use cases that do not require very low latency or are not
cpu compute bound we can employ wrapping. For example we encode an inner
block with some PQC scheme (or multiple) and then wrap it with EC?
Could it not be argued that this would at least be more secure than just
pure EC crypto? If there are any undiscoverd vulnerabilities within the
PQC the attacker at least needs to push through our battle hardened
current crypto to attempt to exploit the inner vulnerability.
Agathos
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 358 bytes
Desc: not available
URL: <https://www.metzdowd.com/pipermail/cryptography/attachments/20250311/ae2cd248/attachment.sig>
More information about the cryptography
mailing list