Gerard 
DeRose The 2nd pre-release of my zf-zebrachain crate is out!
docs.rszf_zebrachain - Rust🦓 🔗 ZebraChain: A futuristic cryptographic identity system.
Recent searches
Search options
#pqc
4 posts4 participants0 posts today
Alors que l’ordinateur quantique est loin de voir le jour, l’informatique dite « postquantique » se déploie même sans lui : tous les professionnels de la cryptographie l’utilisent déjà pour sécuriser les échanges numériques. #Cryptographie #PQC https://www.lemonde.fr/sciences/article/2025/04/22/le-chiffrement-est-entre-dans-l-ere-postquantique_6598862_1650684.html
Le Monde · Le chiffrement est entré dans l’ère postquantique
Save the date!
Join us in sunny Albena for the PQCSA Summer School, 16–20 June 2025!
Learn the fundamentals of #PostQuantumCryptography
Dive into NIST's PQC standards
Explore integration challenges & future research
Beach + crypto = perfect combo
Early bird: €310 (before 23/05)
Regular: €360
#PQC #CyberSecurity #CryptoSummerSchool #PQCSA2025
Registration and info: https://www.esat.kuleuven.be/cosic/events/pqcsa-summer-school/
Continued thread
Great call to action by Robbie King on finding more useful quantum algorithms.
Billions of euros have been spent on research for advancing the development of quantum computers, but what are they useful for?
As the post-quantum transition progresses, the main incentive for quantum computers is going away.
Robbie claims "The bar for meaningful progress is lower than it might seem, and even incremental advances are valuable.”
https://quantumfrontiers.com/2025/04/20/quantum-algorithms-a-call-to-action/
El lado del mal - Hamming Quasi-Cyclic (HQC-KEM): Nuevo Key-Encapsulation Mechanism en Post-Quantum Cryptography https://www.elladodelmal.com/2025/04/hamming-quasi-cyclic-hqc-kem-nuevo-key.html #PQC #Quantum #PostQuantum #HummingQuasiCiclic #HQC #KEM #Criptografía #Cifrado
Join our #PQCSA summer school in Albena, Bulgaria from 16-20 June 2025! The goal of this school is to introduce the fundamentals of #PQC, its necessity, and the current threat landscape.
Info and registration: https://www.esat.kuleuven.be/cosic/events/pqcsa-summer-school/
PQC fundamentalsPQC fundamentals - PQC fundamentals16-20 June 2025 PQCSA summer school in Albena The goal of this PQCSA summer school is to introduce the fundamentals of PQC, its necessity, and the current threat landscape. Participants will explore the proposed PQC algorithms, including those chosen by NIST. We will examine the practical challenges of PQC standardisation and integration. During the school […]
#quantique #cryptographie #PQC
J'apprends le terme de Q-day, qui désigne le jour où un CRQC (Cryptographically Relevant Quantum Computer, prononcer "cric") cassera tout. Le Q-day, selon les meilleurs experts, est entre deux et cent ans dans le futur.
C'est même déjà dans Wikipédia anglophone https://en.wikipedia.org/wiki/Q-Day
en.wikipedia.orgQ-Day - Wikipedia
About a third of the WWW #TLS traffic is using post-quantum encryption, which is protected against quantum factoring attacks such as Shor's algorithm. This has been achieved since Hybrid ML-KEM has been widely adopted by most web browsers and large service providers such as Cloudflare, Google, AWS, etc. There are no absolute figures available, but for example, Cloudflare has nice statistics about PQ encryption use on their services: https://radar.cloudflare.com/adoption-and-usage#post-quantum-encryption-adoption
The best part of this adoption is that users haven't had to do anything, or even know that this has been happening. As it should be.
#Qualys needs to update their TLS client test to support the new signature algorithms and named groups. There are a fair number of "unknown" entries with #OpenSSL 3.5. https://clienttest.ssllabs.com:8443/ssltest/viewMyClient.html
The paper I co-authored (“A Critical Analysis of Deployed Use Cases for Quantum Key Distribution and Comparison with Post-Quantum Cryptography”) was accepted for publication by “EPJ Quantum Technology” today. 
You can find the preprint here, Nick will eventually update it with the final changes.
In short: We looked into existing use-cases for #QuantumKeyDistribution and whether they make any sense and did so as a joint team between people with a QKD-background and cryptographers who started out very critical of QKD. (I’m firmly in the latter camp.)
My personal summary (though some of my co-authors won’t share it to this extend): #QKD is bullshit and not useful for practical purposes as it stands.
#crypto #cryptography #cryptology #postquantumcrypto #PQC
IACR Cryptology ePrint Archive · A Critical Analysis of Deployed Use Cases for Quantum Key Distribution and Comparison with Post-Quantum CryptographyQuantum Key Distribution (QKD) is currently being discussed as a technology to safeguard communication in a future where quantum computers compromise traditional public-key cryptosystems. In this paper, we conduct a comprehensive security evaluation of QKD-based solutions, focusing on real-world use cases sourced from academic literature and industry reports. We analyze these use cases, assess their security and identify the possible advantages of deploying QKD-based solutions. We further compare QKD-based solutions with Post-Quantum Cryptography (PQC), the alternative approach to achieving security when quantum computers compromise traditional public-key cryptosystems, evaluating their respective suitability for each scenario. Based on this comparative analysis, we critically discuss and comment on which use cases QKD is suited for, considering factors such as implementation complexity, scalability, and long-term security. Our findings contribute to a better understanding of the role QKD could play in future cryptographic infrastructures and offer guidance to decision-makers considering the deployment of QKD.
OpenSSH 10.0 just landed, now completely removing DSA signature support (you've been warned, repeatedly :-) and finite-field diffie-hellman key exchange. It also enables mlkem768x25519-sha256 as the default kex! (#pqc)
The new version string ("OpenSSH_10.0") is also likely to confuse a bunch of stupid scanners that assume anything starting with "OpenSSH_1" is a 1.x version.
We are organizing a #PQCSA summer school in Albena from 16-20 June 2025 to introduce the fundamentals of #PQC. More info and registration on: https://www.esat.kuleuven.be/cosic/events/pqcsa-summer-school
OpenSSL is advancing into the quantum era with the upcoming release of OpenSSL 3.5, integrating post-quantum cryptographic algorithms such as ML-KEM (FIPS 203), ML-DSA (FIPS 204), and SLH-DSA (FIPS 205). This development ensures enhanced security against emerging quantum computing threats. For an in-depth analysis, refer to the article by Prof Bill Buchanan OBE FRSE: https://medium.com/asecuritysite-when-bob-met-alice/no-excuses-openssl-enters-the-quantum-age-ad29af287273
ASecuritySite: When Bob Met Alice · No Excuses: OpenSSL Enters the Quantum Age - ASecuritySite: When Bob Met Alice - Medium
Continued thread
This is undoubtedly the most promising Post-Quantum TLS deployment situation I have seen for #Tor since we started discussing it more actively in the team. Very exciting!
I hope that OpenSSL 3.5, when released, will make it into #Debian Trixie. That would make deployment of this so much more snappy and easy for the Tor network to upgrade, but that may be dreaming. The timelines here look quite difficult for that to happen, but let's hope.
Continued thread
Lo and behold, #OpenSSL 3.5 (their upcoming LTS release) will come out here at the beginning of April, and it does indeed support some of these hybrid PQC schemes. Their recent beta2 announcement can be read here: https://openssl-library.org/post/2025-03-25-openssl-3.5-beta/ and their roadmap is at https://openssl-library.org/roadmap/index.html
Very excited by this work. Big kudos to the OpenSSL Team here! 
Already planning on giving this a spin with the C implementation of #Tor later this week to see how it goes!
OpenSSL Library · OpenSSL 3.5 Beta Release AnnouncementThe OpenSSL Project is pleased to announce that OpenSSL 3.5 Beta1 pre-release is released and adding significant new functionality to the OpenSSL Library.
This Venn diagram showing which PQ algorithms are permitted by which government regulatory body from Mike Ounsworth's presentation at the Real World Post-Quantum Cryptography Workshop last week.
(Mike gave a version of that talk earlier this year at the PKIC conf: https://pkic.org/events/2025/pqc-conference-austin-us/WED_BREAKOUT_1200_Mike-Ounsworth_Architecting-PKI-Hierarchies-for-Graceful-PQ-Migration.pdf)
Sicherheits-Architekt. Wenn du vormittags elliptische Kurven für die Post-Quanten-Kryptographie evaluieren darfst und nachmittags einem Projektmanager erklären musst, dass das Telefon kein sicherer Kanal ist.
Post-Quantum #DNSSEC Testbed with BIND and PowerDNS
pq-dnssec.dedyn.ioPost-Quantum DNSSEC Testbed
The NCSC’s advisory deadline of 2035 for organisations to introduce quantum-safe algorithms is too late, according to some industry insiders.
The NCSC’s advisory deadline of 2035 for organisations to introduce quantum-safe algorithms is too late, according to some industry insiders.
www.computing.co.ukNCSC’s quantum safety deadlines too optimistic say industry insiders‘I’d halve all those numbers’