https://community.isc2.org/t5/Tech-Talk/An-inconvenient-truth-about-modern-cryptography/m-p/73308#M4533 <P>Hi All</P><P>&nbsp;</P><P>For a week in April of 2024, the cryptologic research community was trying to make sense of a freshly announced result.&nbsp; Yilei Chen of Tsinghua University in Beijing, China published a paper, “<A href="https://eprint.iacr.org/2024/555" target="_blank">Quantum Algorithms for Lattice Problems</A>” on the International Association for Cryptologic Research (IACR)’s ePrint Archive. &nbsp;The author claimed to have discovered a quantum polynomial-time algorithm for solving certain mathematical problems, which happen to be closely related to the new post-quantum cryptographic algorithms ML-KEM and ML-DSA which NIST plans finalize this year in advance of a significant national push for post-quantum cryptography.&nbsp; If true, this could have led to a loss of confidence in lattice-based techniques, with huge implications for national policy.&nbsp;</P><P>A week later, a flaw was found in the paper.&nbsp; The author has acknowledged that the main claim is no longer justified and they did not see any workaround.&nbsp; So the worry has now passed regarding this paper.&nbsp; But it seems alarming that so much time and money building up cyber infrastructures that rest on cryptographic algorithms could potentially be undone by a new discovery.&nbsp; It seems like a huge risk.&nbsp; Is there any way to avoid the risk?&nbsp; Why have we made the decision to accept it?</P><P>&nbsp;</P><P><A href="https://pqcc.org/an-inconvenient-truth-about-modern-cryptography/" target="_blank">https://pqcc.org/an-inconvenient-truth-about-modern-cryptography/</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Thu, 22 Aug 2024 00:15:34 GMT Caute_cautim 2024-08-22T00:15:34Z https://community.isc2.org/t5/Tech-Talk/An-inconvenient-truth-about-modern-cryptography/m-p/73308#M4533 <P>Hi All</P><P>&nbsp;</P><P>For a week in April of 2024, the cryptologic research community was trying to make sense of a freshly announced result.&nbsp; Yilei Chen of Tsinghua University in Beijing, China published a paper, “<A href="https://eprint.iacr.org/2024/555" target="_blank">Quantum Algorithms for Lattice Problems</A>” on the International Association for Cryptologic Research (IACR)’s ePrint Archive. &nbsp;The author claimed to have discovered a quantum polynomial-time algorithm for solving certain mathematical problems, which happen to be closely related to the new post-quantum cryptographic algorithms ML-KEM and ML-DSA which NIST plans finalize this year in advance of a significant national push for post-quantum cryptography.&nbsp; If true, this could have led to a loss of confidence in lattice-based techniques, with huge implications for national policy.&nbsp;</P><P>A week later, a flaw was found in the paper.&nbsp; The author has acknowledged that the main claim is no longer justified and they did not see any workaround.&nbsp; So the worry has now passed regarding this paper.&nbsp; But it seems alarming that so much time and money building up cyber infrastructures that rest on cryptographic algorithms could potentially be undone by a new discovery.&nbsp; It seems like a huge risk.&nbsp; Is there any way to avoid the risk?&nbsp; Why have we made the decision to accept it?</P><P>&nbsp;</P><P><A href="https://pqcc.org/an-inconvenient-truth-about-modern-cryptography/" target="_blank">https://pqcc.org/an-inconvenient-truth-about-modern-cryptography/</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Thu, 22 Aug 2024 00:15:34 GMT https://community.isc2.org/t5/Tech-Talk/An-inconvenient-truth-about-modern-cryptography/m-p/73308#M4533 Caute_cautim 2024-08-22T00:15:34Z