Deirdre Connolly <[email protected]> writes: >This fails to mitigate Store Now Decrypt Later attacks which are considered a >live threat to present TLS traffic
No they're not, or at least not based on any kind of rational thinking. No- one has ever demonstrated any kind of quantum physics experiment that threatens DLP-based protocols, all we've got is data (if you want to call it that) for imaginary devices like the German government (BSI) study that estimated it'd take 100 days and EUR 4M in electricity to recover a single 2048-bit key using a physics experiment that doesn't exist and that no-one has shown how to construct. In 2017, the last year that I could find data for, 7 trillion TLS keys were negotiated. Using the BSI figures for an imaginary device that doesn't exist, you can recover 3.5 of those every year at a cost of 15 million Euros, meaning you fall 7 trillion keys behind for every year of operation. Apologies for injecting actual data into the discussion. If someone were to tell you something like the above outside of the field of crypto and without including the magic word "quantum" in the discussion, you'd be looking at them as if you expected a cuckoo to pop out of their forehead on a spring. At best, SNDL is the quantum equivalent of Roko's Basilisk. Peter. _______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
