I didn’t make that claim. Obviously there’s a small trade off that is practically irrelevant, you can optimize so that the trade off doesn’t make it practically much less secure, make up for it elsewhere
Replying to onlydeadhorses post with overtones of ad hominem:
Stop assuming what I do or don’t know or can do, have done etc. Have you identified me?
The issue of making crypto “less secure” isn’t anywhere near the deal that some academics are making it out to be.
I’m just a user, not going to implement crypto. Someone else can solve such problems. Make crypto that has a secure skeleton key system that respects privacy without reducing security. “Make up for it” by making it twice as slow maybe, just an idea
You’re plainly biased against my position and ventured towards an attack. Let’s not, please.
The stuff I was reading made it clear that current skeleton key systems don’t suffer from greatly reduced security by any stretch. but still have a chain of custody system / spof issues. I’m sure something much more clever that respects privacy and solves those issues is possible
Since I’m the one out of your league, can you and your colleagues work on it
No you didn't, but the person you replied to did, and you managed to overlook it then and now. Please go and design your algorithm where you "make up for it elsewhere". I don't know why you are posting about this if you don't know anything about the matter.
This comment now has a reply button. Another comment about “good old fashioned troll” was made close by, but there isn’t a reply button:
No, you’re right. I’m not an expert and maybe I’m wrong. Just seems possible to build a better mouse trap here. I couldn’t build it, you’re right. Wish I had such skills. But I’ve looked into the topic and bit and noodled with crypto as a user and in principle it should be possible to build a skeleton key crypto system that isn’t much less secure. Just seems that way to me. Non expert guess.
I’m sure such tech could be evolved to solve the spof key issue (wouldn’t want your skeleton key leaking) for instance
My response was in consideration of the points here.
Snowden, one of his goals, besides defecting to Russia, was to “start the conversation”. The rumor is that have been involved with shadow brokers btw
If your boss came to you and said, by law, we need to build crypto with an evolved key escrow system that overcomes the security problems noted by IEEE and others, could you do it? Would you do it? Easy to say “no way, it can’t be done” with or without some type of bias towards a desire for perfectly strong encryption, but again I suspect that it is possible to build such a thing, if it doesn’t exist already.