https://community.isc2.org/t5/Tech-Talk/Is-hybrid-encryption-the-answer-to-post-quantum-security/m-p/67757#M4315 <P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/797288093">@Early_Adopter</a>But make sure you have done your research, created a CBOM, and are prepared to do extensive testing and with the ability to adopt crypto agility.</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Fri, 01 Mar 2024 02:44:06 GMT Caute_cautim 2024-03-01T02:44:06Z https://community.isc2.org/t5/Tech-Talk/Is-hybrid-encryption-the-answer-to-post-quantum-security/m-p/67740#M4312 <P>Hi All</P><P>&nbsp;</P><P>The concept of hybrid encryption, a combination of public-key and symmetric encryption, is receiving increased attention in the wake of the rollout of post-quantum algorithms developed through the National Institute of Standards and Technology’s (NIST) post-quantum cryptography (PQC) competition. Tech giant Google has already begun using hybrid algorithms in Chrome and some servers. However, the approach has its critics, including the National Security Agency (NSA) and the UK's Government Communications Headquarters (GCHQ), who cite increased complexity, decreased efficiency, and inconsistent structures as potential drawbacks. In contrast, national cryptographic agencies in France and Germany endorse the use of hybrid encryption.</P><P>&nbsp;</P><P><A href="https://www.csoonline.com/article/1307682/is-hybrid-encryption-the-answer-to-post-quantum-security.html" rel="" target="_blank">https://www.csoonline.com/article/1307682/is-hybrid-encryption-the-answer-to-post-quantum-security.html</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Thu, 29 Feb 2024 20:08:32 GMT https://community.isc2.org/t5/Tech-Talk/Is-hybrid-encryption-the-answer-to-post-quantum-security/m-p/67740#M4312 Caute_cautim 2024-02-29T20:08:32Z https://community.isc2.org/t5/Tech-Talk/Is-hybrid-encryption-the-answer-to-post-quantum-security/m-p/67751#M4314 If you’re okay dealing with the complication then “double bagging” can make a lot of sense, particularly if you’re not sure when the dam will break… encrypt with what you know and wrap in hybrid-crypto or vicci-verci.<BR /><BR />Also if an intel agency is saying don’t do that, might be tricky then it might be a good idea to think about why that might be the case.<BR /><BR />“Mr IBM, it’s about young master Lucifer. Yes, we felt he dint really need to use all those bits for key size…”<BR /><BR />Now these entities are fairly split brained in that they both eavesdrop and protect, but it’s still good to consider motivation.<BR /><BR />Also to quote Phil Zimmermann when asked if something was too complex.<BR /><BR />“You know, I’m pretty sure they’ve got computers…” (I’m paraphrasing, he actually said “the government.”)<BR /><BR />Whatever the solution you/we/I choose it’s clear that everyone will need good options in the near future.<BR /> Thu, 29 Feb 2024 23:44:19 GMT https://community.isc2.org/t5/Tech-Talk/Is-hybrid-encryption-the-answer-to-post-quantum-security/m-p/67751#M4314 Early_Adopter 2024-02-29T23:44:19Z https://community.isc2.org/t5/Tech-Talk/Is-hybrid-encryption-the-answer-to-post-quantum-security/m-p/67757#M4315 <P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/797288093">@Early_Adopter</a>But make sure you have done your research, created a CBOM, and are prepared to do extensive testing and with the ability to adopt crypto agility.</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Fri, 01 Mar 2024 02:44:06 GMT https://community.isc2.org/t5/Tech-Talk/Is-hybrid-encryption-the-answer-to-post-quantum-security/m-p/67757#M4315 Caute_cautim 2024-03-01T02:44:06Z