[redwheelbarrow]

Can you elaborate more? In what sense? They are certainly vulnerable if you compromise the system which has them saved. Are they vulnerable to a brute force breach? Likely not, brute force is always a slow process, no matter how you speed it up. Is X vulnerable should always be phrased as Is X vulnerable to Y.

[ohiovr]

right, brute force your way in without a key

[ohiovr]

I would also add is there additional vulnerability just from an attacker examining the public key with crypto whatchahosy magic

[redwheelbarrow]

I'm not sure I follow. A brute force attack generates a key which can then be tested against the target. This isn't magic, in fact, the more detailed answer above made the same argument essentially. Thought they provide a different argument suggesting that it may be possible to increase the ability to guess keys correctly.

[ohiovr]

I would think that if the rate of guesses is only one per second it would take eons to find the correct one. I was just wondering if there is an offline method. Just wondering how safe we can be when the news comes out.

[redwheelbarrow]

I assume you are correct. I also assume you and I are somewhat safe. You have to consider the likely hood of an individual getting a hold of one of these devices in the near future. Then again you really have to ask if there is any reason you in particular will be targeted by someone with this technology.

[ohiovr]

Eventually everyone will be targeted. I have an unannounced web server serving a domain in the middle of internet nowhere and I get script attacks all the time. If some how this gets commercialized with no regulation criminals will open up shop for business practically the day after. Its like CRISPR: sure it can do some powerful things but so can your adversaries to you. I hate to think of the internet as a cloud of adversaries but that is really what it has become.