Slashdot Mirror

← Back to Stories (view on slashdot.org)

NIST Asks Public For Help With Quantum-Proof Cryptography (securityledger.com)

Posted by BeauHD on from the better-be-safe-than-sorry dept.

chicksdaddy quotes a report from The Security Ledger: With functional, quantum computers on the (distant?) horizon, The National Institute of Standards and Technology (NIST) is asking the public for help heading off what it calls "a looming threat to information security:" powerful quantum computers capable of breaking even the strongest encryption codes used to protect the privacy of digital information. In a statement Tuesday, NIST asked the public to submit ideas for "post-quantum cryptography" algorithms that will be "less susceptible to a quantum computer's attack." NIST formally announced its quest in a publication on The Federal Register. Dustin Moody, a mathematician at NIST said the Institute's main focus is developing new public key cryptography algorithms, which are used today to protect both stored and transmitted information. "We're looking to replace three NIST cryptographic standards and guidelines that would be the most vulnerable to quantum computers," Moody said. They are FIPS 186-4, NIST SP 800-56A and NIST SP 800-56B. Researchers have until November, 2017 to submit their ideas. After the deadline, NIST will review the submissions. Proposals that meet the "post-quantum crypto" standards set up by NIST will be invited to present their algorithms at an open workshop in early 2018.

1 of 138 comments (clear)

  1. Re: Not Hard by thesupraman · · Score: 5, Insightful

    Ffs..

    So.. You will personally go and visit each and every web site you want to access privately?
    Physically visit every inline store you want to deal with?
    Then secure all that data carefully! Remember.. If anyone gets a copy.. All security is give.. At either end!

    You need to think about things for more than 30 seconds.

    Or perhaps you should accept that armchair 'experts' like you who think this is so easy are actually a big part of the problem?

    Good crypto is hard.. QC proof crypto will be harder.. Such is life.
    The major historical mistake to avoid is over complex 'standards' that are therefore never implemented or used correctly (I am looking at you ipsec..)