Total Pageviews

Tuesday, 6 March 2018

PQCrypto Usage & Deployment

Here's a list of software that incorporate PQCrypto (post-quantum cryptography), that is, cryptography resistant to attack from quantum computers.
Note on QKD: Quantum Key Distribution, an unrelated technology, is probably snake oil. It will not be discussed here.

Background information

Symmetric / secret-key cryptography

Grover's algorithm will reduce symmetric cipher security by a square root. So against a quantum computer running Grover's algorithm, AES-256 will provide a comfortable security level of 2^128. However, AES-128 will only provide a security level of 2^64, which will render it broken. (Keep in mind that attackers are storing ciphertext now for later analysis.) The following ciphers are recommended for long term security against quantum cryptanalysis:
  • AES-256 (Vincent Rijmen, Joan Daemen)
  • Salsa20 with 256-bit keys (Daniel J. Bernstein)

Public-key cryptography

  • McBits — fast constant-time code-based cryptography (Daniel J. Bernstein, Tung Chou, Peter Schwabe)
  • McBits — The first version for the "new" McBits software
  • mcbitsarm — MCBits on STM32f407 

No comments:

Post a Comment

Note: only a member of this blog may post a comment.