Red Hot Cyber

Cyber security, cybercrime, hack news, and more
Search

Signal towards the Future: Post Quantum Cryptography now protects our messages

Tara Lie : 25 September 2023 14:06

Translator: Tara Lie

Signal has announced that it has improved encryption within its messenger application.

Its end-to-end communication protocol now uses quantum-resistant cryptographic keys, making it resistant to future attacks by quantum computers.

Supporta Red Hot Cyber attraverso

Quantum computers – that at the moment do not have concrete applications, as we saw in the interview with Prof. Morello from the ARC Center of Excellence for Quantum Computation in the University of New South Wales in Australia and from Prof. Severini, director of quantum technologies at Amazon Web Services (AWS) – have the potential to be much more powerful and efficient than current systems, allowing them to perform calculations that would take years for a modern supercomputer.

As these computers slowly begin to become a reality, one of the threats this emerging technology poses is weakening current cryptographic schemes – allowing protected data to be quickly decrypted at a future time, and gaining access to confidential information.

Nevertheless, the collection of encrypted data with the aim of decrypting it once such computers become a reality, is beginning to be spoken about. This can be remediated – or at least mitigated – by implementing encryption algorithms that are resistant to quantum computers, as suggested previously by the National Institute of Standards and Technology (NIST).

In terms of messaging apps such as Signal that utilise end-to-end encryption to protect communication, the adoption of such approaches – and therefore the use of quantum-safe algorithms – becomes an increasingly important step to implement as each day passes. 

Signal explains that its X3DH (Extended Triple Diffie-Hellman) protocol has been upgraded to PQXDH (Post-Quantum Extended Diffie-Hellman), which incorporates quantum-resistant key generation mechanisms for Signal’s end-to-end encryption specification protocol (E2EE).

“We believe that the key encapsulation mechanism we have selected, CRYSTALS-Kyber, is built on solid foundations, but to be safe we do not want to simply replace our existing elliptic curve cryptography foundations with a post-quantum public key cryptosystem” explains Signal, and adds: “Instead, we are augmenting our existing cryptosystems such that an attacker must break both systems in order to compute the keys protecting people’s communications.

PQXDH uses both the elliptic curve protocol X3DH and a post-quantum key encapsulation mechanism called CRYSTALS-Kyber.

CRYSTALS-Kyber is one quantum-resistant algorithm among those approved by NIST, suitable for quick operations that require encryption key exchange. Signal points out that the transition to PQXDH is just the first step towards reaching quantum-resistant E2EE (end-to-end encryption). 

Tara Lie
Cyber Security consultant from Perth, Western Australia, focused on governance, risk quantification and compliance. Graduate of cyber security and pure mathematics, with a second-major in Italian Studies. Tara is pursuing a Masters in Cyber Security.
Categories
Banner

Editorial board : [email protected]

Facebook Linkedin Youtube Telegram Twitter Pinterest Tumblr
Redhotcyber is an open-news project born from the idea of Massimiliano Brolli in 2019, subsequently expanded into a network of people who collaborate in the dissemination of topics focused on information security, but also on technology and information technology in general, with the aim to disseminate the concepts of cybersecurity to an ever-increasing number of people
The photos and articles on redhotcyber.com were partly taken from the Internet and therefore considered to be in the public domain. If the subjects or authors have something against their publication, they can report it to the editorial staff who will promptly remove them from the site.