/plushcap/analysis/cloudflare/experiment-with-pq

Experiment with post-quantum cryptography today

What's this blog post about?

The text discusses the potential threat of quantum computers to data security on the internet, as they could decrypt currently encrypted information. To address this issue, the National Institute of Standards and Technology (NIST) has announced plans to standardize Kyber, a post-quantum key agreement scheme, by 2024. In July 2022, Cloudflare added support for hybrid post-quantum key agreements X25519Kyber512Draft00 and X25519Kyber768Draft00 to a number of test domains. Users can experiment with these features on their test websites by enrolling them in the Cloudflare post-quantum beta program. The text also explains how to test the performance of these new key agreements using open-source forks of BoringSSL and Go, as well as what to look for when testing. It is noted that while Kyber requires less computation than classical key agreements like X25519, it has larger keys and requires more RAM. The text also mentions the fine print associated with enabling post-quantum cryptography on websites, including no stability or support guarantees due to ongoing changes in Kyber and its integration into TLS.

Company
Cloudflare

Date published
Aug. 4, 2022

Author(s)
Bas Westerbaan, Christopher Patton, Peter Wu

Word count
1153

Language
English

Hacker News points
5


By Matt Makai. 2021-2024.