this post was submitted on 24 Sep 2023
67 points (97.2% liked)

Asklemmy

43946 readers
498 users here now

A loosely moderated place to ask open-ended questions

Search asklemmy ๐Ÿ”

If your post meets the following criteria, it's welcome here!

  1. Open-ended question
  2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
  3. Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
  4. Not ad nauseam inducing: please make sure it is a question that would be new to most members
  5. An actual topic of discussion

Looking for support?

Looking for a community?

~Icon~ ~by~ ~@Double_[email protected]~

founded 5 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
67
When will post quantum resistant HTTPS protocols be a thing? (lemmy.world)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
24 comments fedilink hide all child comments
 

Some services are slowly developing post quantum resistant protocols for their services like Signal or Tutanota. When will this be a thing for the web?

you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 10 points 1 year ago (4 children)

Hmmm real need.... we need it now, lots of traffic is being harvested now for cracking later.

[โ€“] [email protected] 7 points 1 year ago (1 children)

Oh I fully agree. However, the people that control the purse strings in business will not take IT security seriously until something bad enough happens that it either makes the news or affects them directly.

[โ€“] [email protected] 1 points 1 year ago* (last edited 1 year ago)

True. I just think of the hubble program and how what we learned was that there were already a bunch of them pointing at earth. I think quantum computing will be the same. 127 qubit machines are now publicly available... so what's available to the cia?

Idk if that will ever hit the bank accounts that matter

[โ€“] httpjames 3 points 1 year ago (1 children)

Using a symmetric pre-shared key based VPN can help mitigate this issue. While the actual HTTPS data will still use non-PQR cryptography, Wireguard's XChaCha20 and OpenVPN's AES-256-CBC are considered safe against quantum computers since they don't use asymmetric cryptography.

Of course, you still need to trust the VPN provider.

[โ€“] [email protected] 1 points 1 year ago

Awesome! Thats good info, thanks!

[โ€“] [email protected] 2 points 1 year ago (1 children)

โ€œLotsโ€

Citation needed

[โ€“] [email protected] 3 points 1 year ago* (last edited 1 year ago)

[This comment has been deleted by an automated system]

[โ€“] [email protected] -1 points 1 year ago (2 children)

Who has an interest in cracking your https traffic to say, lemmy? If it's a nationstate, they already have access to root private key certs and that attack angle will not be mitigated with "quantum" encryption. If it's Capitalism, i.e. google-ads or whatever, then it's a marginal utility issue. If they harvested some of your https traffic from 20 years ago, it's pretty worthless as far as metadata for ad-targeting etc goes. I don't really see what "quantum encryption" would gain you.

[โ€“] [email protected] 3 points 1 year ago

True it's definitely tinfoil hat territory

[โ€“] [email protected] 1 points 1 year ago

I'm a nobody, and I don't expect there's anyone who wants to access my encrypted traffic, but someone out there is important enough to the right people that would love to get access to that kind of stuff.