https://community.isc2.org/t5/Tech-Talk/Dilithium-Signature/m-p/71752#M4466 <P>Hi All</P><P>&nbsp;</P><P><SPAN class=""><SPAN>Digital signatures make the Internet trustworthy, and provide the basis of PKI (Public Key Infrastructure). Without it, we could not check the trustworthiness of the Web sites we visit. Therefore, signatures such as RSA and ECDSA provide the foundation of trust on the Internet, as the key exchange method (such as ECDH) cannot provide trustworthiness on its own.<BR /><BR />But there's a problem. RSA and ECDSA will both be cracked with quantum computers. We thus need to start to migrate the Internet away from these signatures.</SPAN></SPAN>&nbsp; Here is one of the replacements:</P><P>&nbsp;</P><P>At present, CRYSTALS (Cryptographic Suite for Algebraic Lattices) supports two quantum robust mechanisms: Kyber for key-encapsulation mechanism (KEM) and key exchange; and Dilithium for a digital signature algorithm. CRYSTALS Dilithium uses lattice-based Fiat-Shamir schemes, and produces one of the smallest signatures of all the post-quantum methods, and with relatively small public and private key sizes. The three main implements for the parameters used are: Dilithium 2, Dilithium 3 and Dilithium 5. Overall, Dilithium 3 is equivalent to a 128-bit signature, and is perhaps the starting point for an implementation.</P><P>&nbsp;</P><P><A href="https://asecuritysite.com/pqc/dilithium_sign" target="_blank" rel="noopener">https://asecuritysite.com/pqc/dilithium_sign</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P><P>&nbsp;</P> Sun, 07 Jul 2024 22:54:04 GMT Caute_cautim 2024-07-07T22:54:04Z https://community.isc2.org/t5/Tech-Talk/Dilithium-Signature/m-p/71752#M4466 <P>Hi All</P><P>&nbsp;</P><P><SPAN class=""><SPAN>Digital signatures make the Internet trustworthy, and provide the basis of PKI (Public Key Infrastructure). Without it, we could not check the trustworthiness of the Web sites we visit. Therefore, signatures such as RSA and ECDSA provide the foundation of trust on the Internet, as the key exchange method (such as ECDH) cannot provide trustworthiness on its own.<BR /><BR />But there's a problem. RSA and ECDSA will both be cracked with quantum computers. We thus need to start to migrate the Internet away from these signatures.</SPAN></SPAN>&nbsp; Here is one of the replacements:</P><P>&nbsp;</P><P>At present, CRYSTALS (Cryptographic Suite for Algebraic Lattices) supports two quantum robust mechanisms: Kyber for key-encapsulation mechanism (KEM) and key exchange; and Dilithium for a digital signature algorithm. CRYSTALS Dilithium uses lattice-based Fiat-Shamir schemes, and produces one of the smallest signatures of all the post-quantum methods, and with relatively small public and private key sizes. The three main implements for the parameters used are: Dilithium 2, Dilithium 3 and Dilithium 5. Overall, Dilithium 3 is equivalent to a 128-bit signature, and is perhaps the starting point for an implementation.</P><P>&nbsp;</P><P><A href="https://asecuritysite.com/pqc/dilithium_sign" target="_blank" rel="noopener">https://asecuritysite.com/pqc/dilithium_sign</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P><P>&nbsp;</P> Sun, 07 Jul 2024 22:54:04 GMT https://community.isc2.org/t5/Tech-Talk/Dilithium-Signature/m-p/71752#M4466 Caute_cautim 2024-07-07T22:54:04Z https://community.isc2.org/t5/Tech-Talk/Dilithium-Signature/m-p/71762#M4467 <P>I regret to inform you that my first response at reading the subject, was to think, "Did someone finally make a functioning warp drive?!"</P><P>&nbsp;</P><P>My sincerest apologies.&nbsp; I shall now read your link.</P> Mon, 08 Jul 2024 13:23:32 GMT https://community.isc2.org/t5/Tech-Talk/Dilithium-Signature/m-p/71762#M4467 ericgeater 2024-07-08T13:23:32Z https://community.isc2.org/t5/Tech-Talk/Dilithium-Signature/m-p/71786#M4470 <P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/136236425">@ericgeater</a>&nbsp;&nbsp; You have to get with the flow, Quantum Cryptography is coming regardless of putting a finger in the Dutch dam or reservoir!</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Mon, 08 Jul 2024 22:53:02 GMT https://community.isc2.org/t5/Tech-Talk/Dilithium-Signature/m-p/71786#M4470 Caute_cautim 2024-07-08T22:53:02Z