Hacker News new | ask | show | jobs
by bawolff 1093 days ago
So its mostly just public-key encryption and its been a known issue since about 1994. We are still nowhere near making quantum computers that can crack them so its not an urgent thing. There has been a lot of research into alterantives though.
1 comments
wahahah 1093 days ago
Being able to crack present-day communications in the future is still a concern.
link
its-summertime 1093 days ago
Hence https://en.wikipedia.org/wiki/Forward_secrecy to make things more difficult

Compromising the main keys isn't enough, need to compromise each session key as well in turn, a massive increase.

link
upofadown 1093 days ago
Forward secrecy does not provide any value against cryptography compromise. Quite the opposite as it depends on the security of the cryptography over the long term to insure old messages stay inaccessible after the key is forgotten.

Forward secrecy addresses this specific attack:

* Someone builds a archive of your encrypted messages, possibly without your knowledge or consent.

* That someone then gets access to your secret key material.

* They can then decrypt their archive.

The session keys are exchanged by the asymmetrical systems that the imagined quantum computer would be able to break. So the attacker gets the session keys directly. So for, say, signal, they only have to break a new key exchange which doesn't happen all that often. They can just run the hash ratchet after that. Even for TLS that does a new session key per connection, that connection might last a fair time. The 10 min can be spread over multiple connections for this proposal. We are hardly talking about a massive increase of difficulty.

link
bawolff 1092 days ago
I mean, it depends a little bit on what your threat model is. If it takes a week to break a key, and you have hundreds of thousands of tls sessions without knowing which is the relavent one, it is definitely something. But yeah it seems like it would quickly become a minor hurdle once real quantum computers become a thing and presumably have their own moore's law.
link
lyu07282 1093 days ago
I'd imagine that's exactly why the NSA hoards the (rumored) absurd amount of data in the Utah data center
link