Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Slashdot: Post-Quantum Asymmetric Key Exchange?

Posted by timothy on from the tin-can-no-string dept.

First time accepted submitter LeDopore writes "Quantum computers might be coming. I'd estimate that there's a 10% chance RSA will be useless within 20 years. Whatever the odds, some of the data we send over ssh and ssl today should remain private for a century, and we simply can't guarantee secrecy anymore using the algorithms with which we have become complacent. Are there any alternatives to RSA and ECC that are trustworthy and properly implemented? Why is everyone still happy with SSH and RSA with the specter of a quantum menace lurking just around the corner?"

3 of 262 comments (clear)

  1. Re:Vulnerable in 20 years by Waffle+Iron · · Score: 5, Insightful

    Well the person is an idiot. His estimation of 20 years is laughably naive.

    My response to this statement is a quantum superposition of two thoughts:

    A. I agree. A 20 year estimate is ludicrous. It's far too much time.

    B. I agree. A 20 year estimate is ridiculous. It's far too short.

  2. probably by superwiz · · Score: 5, Insightful

    because most people estimate that the cost of putting a software of even hardware-based keylogger is cheaper today than quantum computing will be even when matures. ie, the powers that be, that need to keep tabs on you, already can keep tabs on you.

    --
    Any guest worker system is indistinguishable from indentured servitude.
  3. Re:Sky isn't falling by hawguy · · Score: 5, Insightful

    I don't think the attacker is so much interested in the "sudo service apache2 restart" command but rather the response to the password prompt immediately following...

    If he can break the RSA key exchange to get to the symmetric key encrypting my session, he can already log in as me, he doesn't need the password. But unless he gets his quantum computer within the next 90 days, I'll have already changed the password.