undefined | Better HN

0 pointsdsacco8y ago0 comments

> Ed25519 looks nice and there is experimental support for it in gnupg but it's not post quantum unfortunately.

That's not a problem of NIST recommendations. There aren't any post-quantum secure elliptic curve public-key systems. The fundamental computational problem used by ECC public-key cryptography isn't post-quantum secure, so it's not really a matter of curve choice.

0 comments

Shoothe8y ago

The problem with NIST curves (vs ed25519) is the choice of parameters (it is not clear why they have such and such values) and the implementation edge cases. You already know it but maybe someone else will find it interesting: https://safecurves.cr.yp.to/

The comment about post quantum crypto did not relate to ECC directly. I just would like to see some PQ crypto in OpenPGP :)

j / k navigate · click thread line to collapse

0 pointsdsacco8y ago0 comments

> Ed25519 looks nice and there is experimental support for it in gnupg but it's not post quantum unfortunately.

0 comments

Shoothe8y ago

The comment about post quantum crypto did not relate to ECC directly. I just would like to see some PQ crypto in OpenPGP :)

j / k navigate · click thread line to collapse