The next time a person or organization tells you that this or that cryptographic algorithm is quantum resistant, keep in mind that (so far as I know), the person does not yet exist who knows how to demonstrate quantum resistance.
I am disturbed by the number of official sounding pronouncements declaring an algorithm to be quantum resistant merely because Shor's algorithm cannot break it, for example. Shor's algorithm is just a factoring algorithm, it isn't like factoring numbers is the only thing that quantum computers can do.
No comments:
Post a Comment