[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Safe post-quantum RSA? So says DJB and others

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Safe post-quantum RSA? So says DJB and others
From: Taylor R Campbell <campbell+tor-dev@xxxxxxxxxx>
Date: Thu, 1 Jun 2017 15:43:08 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 01 Jun 2017 11:43:29 -0400
In-reply-to: <6CB05D82CE245B4083BBF3B97E2ED470345868ED@ait-pex01mbx01.win.dtu.dk> (hmco@env.dtu.dk)
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

> Date: Thu, 1 Jun 2017 14:03:46 +0000
> From: Hugo Maxwell Connery <hmco@xxxxxxxxxx>
> 
> Interesting (and surprising):
> 
> https://eprint.iacr.org/2017/351.pdf

This joke paper is an elaborate exercise in burying the lede.

   Abstract: This paper proposes RSA parameters for which (1) key
   generation, encryption, decryption, signing, and verification are
   feasible on today's computers while (2) all known attacks are
   infeasible, even assuming highly scalable quantum computers.

   [...]

   Concrete parameters and initial implementation (buried on p. 12):
   This section looks at performance in more detail, and in particular
   reports successful generation of a 1-terabyte post-quantum RSA key
   built from 4096-bit primes.

The authors don't actually report successful cryptography operations
with such a key -- only successful generation of the key, after four
days.  The largest key they report a successful public-key operation
with was 256 GB; the largest for a private-key operation, 32 GB.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Safe post-quantum RSA? So says DJB and others
  - From: Hugo Maxwell Connery

Prev by Author: Re: [tor-dev] Proposal 247 (Hidden Service Vanguards) Overhaul
Next by Author: [tor-dev] moving toward requiring regression tests for bug fixes
Previous by thread: [tor-dev] Safe post-quantum RSA? So says DJB and others
Next by thread: Re: [tor-dev] Default bridges that are not publishing statistics
Index(es):
- Author
- Thread