In 2023, Signal was the first mainstream messenger to enable post-quantum cryptography. We’re still ahead of the (elliptical) curve, implementing a new hybrid PQ ratchet ensuring Forward Secrecy & Post-Compromise Security even in a post-quantum world. signal.org/blog/spqr/
Signal Protocol and Post-Quantum Ratchets
We are excited to announce a significant advancement in the security of the Signal Protocol: the introduction of the Sparse Post Quantum Ratchet (SPQR).Signal Messenger
reshared this
Avi Schwartz 🇺🇸🇮🇱🇺🇦
in reply to Signal • • •Baharul Islam
in reply to Signal • • •ada
in reply to Signal • • •Waiting for the replies to turn into another tech-Karen show...
No, wait. They already did.
Sören
in reply to Signal • • •bonoky 🇬🇧
in reply to Signal • • •Erik
in reply to Signal • • •Ben Royce 🇺🇦 🇸🇩
in reply to Erik • • •#encryption depends upon basically really hard math problems to work
this has worked well for a long time
but now we have #quantumComputing
while it is in its infancy it makes really hard math problems really easy
so that means in some time, encryption will stop working (all banking and finance, all military comms, etc: it can be hacked)
luckily there are encryption schemes that are resistant to quantum computing
but they have to be implemented
#Signal implemented it
Ben Royce 🇺🇦 🇸🇩 reshared this.
Erik
in reply to Ben Royce 🇺🇦 🇸🇩 • • •Ben Royce 🇺🇦 🇸🇩
in reply to Erik • • •😁
JWcph, Radicalized By Decency
in reply to Ben Royce 🇺🇦 🇸🇩 • • •@benroyce @erikcats For the record, we do not have quantum computers yet, nor do we know when or even if we'll have them for any outside-the-lab purposes.
Good encryption is never a bad idea though 😊
youtube.com/watch?v=Lhou8I2w_L…
Quantum Computers Look Like Chandeliers. This is Why.
YouTubeBen Royce 🇺🇦 🇸🇩
in reply to JWcph, Radicalized By Decency • • •the problem is in #military #quantumComputing R&D, there's definitely advances we're completely unaware of
#turing (and mathematicians from #poland who don't get enough attention on the topic) broke #germany's #enigma machines in #WWII
but it wasn't until 1974 that the world got its first real details about #bletchleyPark
so you can be almost certain #china, #usa, #europe: somewhere some team is on the crux of or has already broken high level #encryption
Ben Royce 🇺🇦 🇸🇩 reshared this.
Vassil Nikolov | Васил Николов
in reply to Ben Royce 🇺🇦 🇸🇩 • • •Possible, but maybe far from certain.
Breaking the Enigma wasn't really smooth sailing.
It had its ups and downs during the most critical years,
but those can't be summarized in 100 words.
Also the Germans helped by overestimating the strength of the Enigma and thus neglecting some measures that would have been in their interest.
The Venona project is also instructive.
It achieved a lot and yet decrypted a small part of all intercepted messages.
@benroyce @jwcph @erikcats @signalapp
Ben Royce 🇺🇦 🇸🇩
in reply to Vassil Nikolov | Васил Николов • • •the great weakness of all fascists is their arrogance and hubris. when they surround themselves with yes men and push lies over truth, they fall for their own bullshit about "superiority"
Ben Royce 🇺🇦 🇸🇩 reshared this.
Charo del Genio
in reply to JWcph, Radicalized By Decency • • •@jwcph @benroyce @erikcats I was about to post something exactly to this meaning!
Also, I would even avoid saying that, if actually made feasible, quantum computers will make hard mathematical problems "easy"; rather, I would say that they would solve them quickly, and much more so than currently imaginable with classic computer architecture. The difference in terminology has to do with how one actually counts the operations that need to be performed in order to solve the problem. Additionally, there is the problem of errors, but let's not get to technical (yet).
Ben Royce 🇺🇦 🇸🇩
in reply to Charo del Genio • • •yeah i heard error correction is the big problem with quantum computing
Charo del Genio
in reply to Ben Royce 🇺🇦 🇸🇩 • • •Ben Royce 🇺🇦 🇸🇩 reshared this.
Sean Fenian
in reply to Charo del Genio • • •There's also the fact that every time so far that some company has claimed "quantum supremacy" and boasted of having "solved" a certain precisely-chosen problem multiple orders of magnitude faster than possible with a classical computer, a different set of researchers have looked at that problem, reframed it, and come up with a way to solve it in comparable time using a classical computer.
The level of hype really is staggering.
Ben Royce 🇺🇦 🇸🇩
in reply to Sean Fenian • • •@zakalwe @paraw @jwcph @erikcats
there is no lock made by a human that another human cannot break
Ben Royce 🇺🇦 🇸🇩 reshared this.
Sean Fenian
in reply to Ben Royce 🇺🇦 🇸🇩 • • •Ben Royce 🇺🇦 🇸🇩
in reply to Sean Fenian • • •a locked door won't stop the police. but your casual handle jiggling thief knows that the noise involved in breaking in won't work out well for them
all security is about "good enough"
Sibrosan
in reply to Ben Royce 🇺🇦 🇸🇩 • • •@benroyce @zakalwe @paraw @jwcph @erikcats
What about the lock that I made and that I broke myself? Another human cannot break it, since it is already broken.
Ben Royce 🇺🇦 🇸🇩
in reply to Sibrosan • • •@sibrosan @zakalwe @paraw @jwcph @erikcats
ah, the philosophical supremacy of "you cannot hack me because i hacked myself"
mkj
in reply to Ben Royce 🇺🇦 🇸🇩 • • •@benroyce @erikcats *Some* really hard math problems.
If large-scale quantum computers turn out to be viable, certain classes of problems are going to be impacted more than others.
It is not true that "all" encryption will stop working, even for generous definitions of "all" and "stop working".
It's certainly bad enough, however. And we now have cryptographic algorithms which are believed to be resistant to *both* classical computer and quantum computer attacks. Which is good.
@signalapp
Ben Royce 🇺🇦 🇸🇩
in reply to mkj • • •is it Winternitz One-Time Signatures/ Lamport signatures?
i'm not a cryptographer but this stuff fascinates me
en.wikipedia.org/wiki/Lamport_…
Cryptographic signature scheme
Contributors to Wikimedia projects (Wikimedia Foundation, Inc.)mkj
in reply to Ben Royce 🇺🇦 🇸🇩 • • •@benroyce I'm not an expert either. My understanding is that for example modular multiplication math (which is used for almost all classical public key cryptographic algorithms, both encryption and signing) is potentially highly impacted by QC; but much math used for symmetric-key encryption and for hashing is significantly less affected. E.g., the effective security of AES-256 is reduced to ~ AES-128, BUT that also assumes QC operations are similar to classical operations.
@erikcats @signalapp
Ben Royce 🇺🇦 🇸🇩
in reply to mkj • • •@mkj @erikcats
yeah that's my understanding as well
"you can break this but you need a bank of 1 billion computers operating for 1 billion years, so..."
{quantum computing enters the chat}
"oops"
so you just change the method to something that is not so vulnerable to quantum computing
rhempel
in reply to mkj • • •Ben Royce 🇺🇦 🇸🇩
in reply to rhempel • • •@rhempel @mkj @erikcats
publicly reported, they are up to 6,000 physical qubits as of september, and ibm is aiming for 100,000 physical qubits by 2033
which allows for 100 logical qubits
don't ask me what any of that means
but i'm reminded of "this computer has 4K of memory? that's astonishing!" from the 1980s
and look at us now
Ben Royce 🇺🇦 🇸🇩 reshared this.
fcalva
in reply to Ben Royce 🇺🇦 🇸🇩 • • •mkj
in reply to mkj • • •Bottom line, I guess, is that there are plenty of nuances here which I am happy to let people who know the stuff much better than I do handle; but it's not quite as clear-cut as "the whole world will break" as it is sometimes presented.
There's a number of detail assumptions which may or may not turn out to be true which impact the actual result. But taking a cautionary stance, we do know that the risk is non-trivial and thus taking mitigative steps is good.
@benroyce @erikcats @signalapp
Charo del Genio
in reply to mkj • • •@mkj @benroyce @erikcats well, one other problem is that of the immense number of continuous parameters needed to describe the state of an actual quantum computer. And then along come papers such as this one
journals.aps.org/prresearch/ab…
This is really cool! And the way I see it, it has the potential to address the problem above by providing a general way to discretize quantum systems. So I guess we'll have to wait and see how things work out.
Personally, I'm quite sceptical about the whole quantum hype, but I'm keeping an open mind.
mkj
in reply to Charo del Genio • • •@paraw Oh, there is a *LOT* to this which doesn't fit in 500 characters! And like I said, I'm not an expert. But we DO know that this stuff is possible in principle, even if not in practice currently; and we DO now have primitives which provide protection. Since it's hard to change the past, taking a cautionary stance would mean that we move toward a setup which provides protection while not stripping us of protection, while there's time to do it less stressfully.
@benroyce @erikcats @signalapp
mkj
in reply to mkj • • •To my mind, quantum computers these days are maybe perhaps at the level of EDSAC, ENIAC or their ilk in classical computer terms: just barely usable for more than proof of concept. No one familiar only with those would imagine them being developed into a smartwatch yet here we are. We can see that there are certain classes of problems, widely relied upon, where quantum computing significantly changes the rules of the game. Not a crisis, but worth attention.
@paraw @benroyce @erikcats @signalapp
Ben Royce 🇺🇦 🇸🇩
in reply to mkj • • •well said
George B
in reply to Ben Royce 🇺🇦 🇸🇩 • • •Ben Royce 🇺🇦 🇸🇩 reshared this.
Ben Royce 🇺🇦 🇸🇩
in reply to George B • • •@gbargoud @erikcats
OOOOH
all those trump land encrypted messages will be seen in the future
that's a great bit of news
George B
in reply to Ben Royce 🇺🇦 🇸🇩 • • •I really really do not want to see a picture of his dick. I'm certain that's in like half of them.
Ben Royce 🇺🇦 🇸🇩
in reply to George B • • •SteveJB
in reply to Ben Royce 🇺🇦 🇸🇩 • • •Joani xcx 😷
in reply to Ben Royce 🇺🇦 🇸🇩 • • •@benroyce
Thank you for this!
(I read the original post, and all I could think was: "I like cake.")
@erikcats @signalapp
Desert Camel
in reply to Signal • • •Charo del Genio
Unknown parent • • •@benroyce @zakalwe @hotelzululima @jwcph @erikcats true story: a while ago, I briefly worked on a tetrazole compound. The goal was to better understand a certain molecular mechanism in plants. The compound was synthesised by a student, who is one of the best chemists I've met (think Walter White sans drugs). He did it during a weekend because, in his own words, "if something messed up, it would have blown up the university, and at least it would have been empty."
We published our findings here
pubs.acs.org/doi/abs/10.1021/a…
L29Ah
in reply to Signal • • •blog.cr.yp.to/20231125-kyber.h… this one, right?
cr.yp.to: 2023.11.25: Another way to botch the security analysis of Kyber-512
blog.cr.yp.toBen Royce 🇺🇦 🇸🇩
in reply to Charo del Genio • • •@paraw @zakalwe @hotelzululima @jwcph @erikcats
😅 😅 😅
good chemists have better salaries
but good software engineers have more fingers
Ben Royce 🇺🇦 🇸🇩 reshared this.
Charo del Genio
in reply to Ben Royce 🇺🇦 🇸🇩 • • •Sean Fenian
in reply to Charo del Genio • • •My co-author on one of my books once attended a weekend party at which they were, among other things, using liquid nitrogen to make ice cream.
After a while, the liquid nitrogen ran out.
Sometime AFTER that point, one of the attendees showed up with a freshly-made batch of ice cream, inviting people to try it. Those who KNEW the nitrogen had run out immediately called a stop and said, "Wait, wait, what exactly did you use to make this?"
He had unknowingly used liquid oxygen.
Ben Royce 🇺🇦 🇸🇩
in reply to Sean Fenian • • •@zakalwe @hotelzululima @paraw @jwcph @erikcats
Holy shit 😱
Ben Royce 🇺🇦 🇸🇩
Unknown parent • • •Patrick
in reply to Signal • • •stony kark
in reply to Signal • • •TagHunt
in reply to Signal • • •Amazing work you guys are doing!
Though I'd like to see some community oriented features like spaces and/or moderation tools
Still my most favorite messenger
Keep up the good work!
Yet another Josh
in reply to Signal • • •And you still require a fucking phone number to make an account.
"Whoop doop we're post quantum encryption but you still have your phone number and give away ALL your metadata and who you call!"
Weatherall
in reply to Signal • • •lol !
what is wrong with you mental mastubators?
is there a single day you dont waste in the toilet bowl delusions of man and his endless grifts?
YOU LIVE IN A FANTASY WORLD! WAKE UP!!!!
kenwheeler.substack.com/p/quan…
QUANTUM is ABSOLUTE BULLSHIT. No such BS exists in Nature, period
Ken wheeler (Ken Theoria Apophasis Substack)Jackkluz
in reply to Weatherall • • •Weatherall
in reply to Jackkluz • • •no not this.
read the article - Title is clear - no room for "quantum" anything in REALITY.
you missed the point bruh.
Jackkluz
in reply to Weatherall • • •Bitcoin takes a finite quantum of entropy defined by difficulty scaling the nonce space and through proof-of-work transforms it into conserved thermodynamic memory: satoshis, a quantum of structure and value. The result is a computed quantum of time: the block.
It is the most literal definition of “quantum” and of “computing.” Energy beneath the physical mirage reduces to discrete quanta at the scale of Planck time. Bitcoin instantiates that process at human scale.
A quantum without absolute scarcity is unintelligible. Physics drifts when it defines quanta without bounds. Measurement is not a convention, it must be tied to a scarce denominator. No such scarce denominator existed before Bitcoin, thus no true measurement existed before Bitcoin.
“A measure of any kind, of any thing, is not a thing at all, nor is a measure found in nature. A measure is an agreed-upon standard of measure.” Except Bitcoin’s measurement is not an agreement. It is a thing. It is conserved energy, crystallized into memory. It’s not just an
... show moreBitcoin takes a finite quantum of entropy defined by difficulty scaling the nonce space and through proof-of-work transforms it into conserved thermodynamic memory: satoshis, a quantum of structure and value. The result is a computed quantum of time: the block.
It is the most literal definition of “quantum” and of “computing.” Energy beneath the physical mirage reduces to discrete quanta at the scale of Planck time. Bitcoin instantiates that process at human scale.
A quantum without absolute scarcity is unintelligible. Physics drifts when it defines quanta without bounds. Measurement is not a convention, it must be tied to a scarce denominator. No such scarce denominator existed before Bitcoin, thus no true measurement existed before Bitcoin.
“A measure of any kind, of any thing, is not a thing at all, nor is a measure found in nature. A measure is an agreed-upon standard of measure.” Except Bitcoin’s measurement is not an agreement. It is a thing. It is conserved energy, crystallized into memory. It’s not just an “agreement”, because truth does not care about your opinion.
Bitcoin is the only system to prove that a quantum of entropy can resolve into a conserved quantum of structure: auditable, irreversible, and true.
Weatherall
in reply to Jackkluz • • •there is NO SUCH thing as a “quantum of entropy”. Not in bitcoin. Not in REALITY.
YOU. ARE. WRONG.
youtube.com/watch?v=faaMsuNitC…
🤔 FIELD Theory in Depth: Fake Particle-Fantasy pseudo-science of Quantum & Relativity
YouTubeTracking Token Disrespector
in reply to Weatherall • • •🤖 Tracking strings detected and removed!
🔗 Clean URL(s):
youtube.com/watch?v=faaMsuNitC…
❌ Removed parts:
&pp=ygUPdGhlb3JpYSBxdWFudHVt
🤔 FIELD Theory in Depth: Fake Particle-Fantasy pseudo-science of Quantum & Relativity
YouTubeCarlielovescum
in reply to Signal • • •Matthieu
in reply to Signal • • •OhMyGoodnas
in reply to Signal • • •