As for quantum computers, there is some debate, but a number of companies have “quantum computers” but it’s arguable if they work correctly and they have limited Q-bits meaning they can’t do anything of significance yet.
I don’t know what he’s talking about, but maybe he’s saying that the US already has quantum computers capable of breaking modern cryptography, and that it’s time to move to Post Quantum Cryptography (PGC). The process is pretty far along:
Both sites mention “harvest now, decrypt later.” That’s an attack where someone could scoop up all the encrypted traffic/files/whatever, and just store it until quantum computers are effective at breaking it. Because of the nature of the topic nobody who knows for sure is going to say, but it’s not going to be cheap to replace all the crypto out there with PGC so there’s a reason to think there’s a need even if nobody will confirm anything. I personally think just the possibility of the attack is enough reason to move if the algorithms are already in place. If you’ve got encrypted data and you expected it to stay unreadable for hundreds of years, then there’s reason to think that’s not achievable right now.
Well they’re in luck; the US already has working quantum computers, and quantum-resistant encryption.
For a given definition of working, yes.
Can you elaborate? Just curious what you are referring to.
There are many quantum resistant encryption algorithms - https://en.wikipedia.org/wiki/Post-quantum_cryptography#Algorithms
As for quantum computers, there is some debate, but a number of companies have “quantum computers” but it’s arguable if they work correctly and they have limited Q-bits meaning they can’t do anything of significance yet.
https://en.wikipedia.org/wiki/ML-KEM
The original standards developed by NIST were literally called Dilithium and Kyber.
I don’t know what he’s talking about, but maybe he’s saying that the US already has quantum computers capable of breaking modern cryptography, and that it’s time to move to Post Quantum Cryptography (PGC). The process is pretty far along:
Both sites mention “harvest now, decrypt later.” That’s an attack where someone could scoop up all the encrypted traffic/files/whatever, and just store it until quantum computers are effective at breaking it. Because of the nature of the topic nobody who knows for sure is going to say, but it’s not going to be cheap to replace all the crypto out there with PGC so there’s a reason to think there’s a need even if nobody will confirm anything. I personally think just the possibility of the attack is enough reason to move if the algorithms are already in place. If you’ve got encrypted data and you expected it to stay unreadable for hundreds of years, then there’s reason to think that’s not achievable right now.
https://nist.pqcrypto.org/foia/20250114/djb pqc paper.pdf