[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [GNUnet-developers] EcDSA signature scheme
|
From: |
Christian Grothoff |
|
Subject: |
Re: [GNUnet-developers] EcDSA signature scheme |
|
Date: |
Sun, 12 Aug 2018 23:33:29 +0200 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1 |
This does not sound like a great idea, largely because the PQ algorithms
are all a bit new and not nearly as well understood as classical crypto.
A sane PQ implementation should _combine_ classical and PQ crypto, i.e.
sign/verify with both types of algorithms and for encryption use two
types of KX algorithms and then HKDF the results together. As they are
not doing that (at least nothing in their documentation suggests this),
I would advise to stay away.
Also, as far as GNUnet is concerned, Jeff is planning on putting some PQ
crypto into the Lake design, and I'm don't see an urgent need to deploy
PQ elsewhere yet. But having good PQ crypto primitive implementations
out there would definitively be a good thing, but I'm not sure codecrypt
is where I'd look. ;-)
On 08/12/2018 06:44 PM, address@hidden wrote:
> News on the PQ site of things - at least worth it to keep an eye on:
> Whonix includes Codecrypt by default now -
> https://www.whonix.org/wiki/PQCrypto#Use_Instructions .
> Codecrypt is a GnuPG-like unix program for encryption and signing that uses
> only quantum-computer-resistant algorithms. It's Free Software using "GNU
> LGPLv3 or later" license, which is good. Codecrypt git:
> https://gitea.blesmrt.net/exa/codecrypt
>
signature.asc
Description: OpenPGP digital signature