Post-quantum crytography and TLS and other applications

8 points

13 years ago

At what point do we seriously start evaluating the use of post-quantum crypto for normal applications, such as TLS?

Now that we know there are certain government agencies that plan on storing encrypted data for future cryptanalysis [1], I'm starting to think there should be some thought put into this? AES is secure (at least AES256), but not RSA/EC. At least in theory, doesn't that mean TLS in its current state, as well as various other applications relying on the same concepts, is effectively useless?

[1] http://www.guardian.co.uk/world/interactive/2013/jun/20/exhibit-b-nsa-procedures-document

1 comment