I don't think that's an unpopular opinion. 20 years is a long time in cryptography, and it'll be surprising if more than a handful of current cryptoprimitives live that long.
I would be shocked if SHA-256 is fundamentally broken in the next 20 years. I also think AES will remain substantially as strong as it currently is in that timeframe, with cryptanalytic weaknesses dominated by particular block cipher modes rather than the substitution-permutation network itself.
AES is one of the few that has a pretty good shot at it, yeah.
SHA-2 has had its margin eroded significantly over the last 10 years. I'd feel nervous about using it in security-critical applications now, never mind 20 years down the line.
ECB is insecure regardless of which cipher you use. There's no excuse for using it in production applications.
No, SHA-2 has not had its margins eroded "significantly", and you should not feel nervous about using it whatsoever. It's fundamentally different from MD5 in structure, so you shouldn't extrapolate a few years' worth of minor weaknesses to forecast major weaknesses in the near future.
The website you've linked is citing legitimate cryptanalytic papers, but it loses credibility by interpreting systems with minor weaknesses as "not considered strong." Minor weaknesses are exhibited in all cryptosystems older than a few years. Can you find me a professional cryptographer who will say SHA-2 is not strong? Because I can't think of any. The authors of these cryptanalytic papers would probably choose it for new projects without being nervous.
It's an attractive idea that cryptographic algorithms will trend towards insecurity over time. But that's a very oversimplified look at how they work, and it's not a reliable prediction over a period <20 years. We are almost certainly several deep research breakthroughs away from a meaningful break in SHA-2.
But I'm just some guy on the internet. If you don't trust my opinion on this, here is the opinion of one of the BLAKE authors, a finalist in the SHA-3 competition: https://twitter.com/veorq/status/834872988445065218
AES is one of the few that I'm pretty confident will be around for a while. RSA already has a lot of caveats to its use and they will undoubtedly grow. In my completely uneducated opinion, it's even odds on RSA vs ECC first.
As long as you’re using it correctly RSA should work, right? We’re not going to factor big numbers anytime soon and RSA is pretty much about factoring.
RSA key sizes have gone up constantly over the years exactly because we did factor ever bigger numbers. ECC key sizes are the same as when the schemes were new, that's one reason ECC is better.