|
|
|
|
|
|
by zimmerfrei
675 days ago
|
|
|
Yes, there are methods to combine multiple, different key exchange algorithms so that you need to break all, like in: https://datatracker.ietf.org/doc/rfc9370/ https://datatracker.ietf.org/doc/draft-ounsworth-cfrg-kem-co... https://www.etsi.org/deliver/etsi_ts/103700_103799/103744/01... For other security mechanisms, like PKI, things are more complicated (and inefficient). And one can argue that even if in theory the above gives you better security margin, the whole system becomes more complicated, and it may be practically less secure because of the additional moving parts. That is why there is no unanimous consensus: agencies in Europe recommend it, but the NSA does not. Finally, note that the the 3rd standard (SLH-DSA), is PQC but it is based on old and well-understood standards (SHA2/SHA3), so it can arguably be used by itself. |
|
|