Do governments already have a 1M bit Quantum Annealer (like the DWave), capable of breaking RSA and ECC?
Well, there's an open source implementation, NTRU, which is not known to be susceptible to Shor's algorithm (and by extension Quantum Computation), being lattice-based. http://sourceforge.net/projects/ntru/files/ There is a patent held which can stop commercial implementations. What is stopping Tor from supporting NRTU? 1. Patent issues? I'm sure Tor can get a letter to rule out future litigation 2. Perhaps having an NRTU exchange over TLS may alert authorities to use of Tor? 1. Double encryption may be required here, until NRTU becomes common place on the web. 2. Or perhaps, staggered hand-shake, starting with RSA - a slight change to an existing algorithm, such as RSA can be used, such that the RSA is indicated for use, but then after establishing a data connection, NRTU is elected and established over RSA. Following establishment, then data stream will be NRTU - presumably indistinguishable from RSA, being a cipher stream. Cryptography is a hobby of mine http://blog.alivate.com.au/the-web-security-emergency/ Todd _______________________________________________ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk