Fuck it. CAESAR: You want NORX or AEZ. PQC: Ring-LWE doesn't support offline encryption, you want SIDH instead. SPHINCS > XMSS.
-
-
Replying to @CiPHPerCoder
Some people dislike the complexity of SIDH, but you're going to be using it in combination with elliptic curve crypto anyway.
1 reply 0 retweets 0 likes -
Replying to @CiPHPerCoder
Post-quantum key exchange: SIDH + ECDH Post-quantum digital signatures: SPHINCS + Ed25519
2 replies 0 retweets 0 likes -
Replying to @CiPHPerCoder
If you want post-quantum public-key encryption, use PQKX then symmetric-key AEAD, which is where CAESAR comes in.
2 replies 0 retweets 0 likes -
Replying to @CiPHPerCoder
NORX: Use a 256-bit nonce generated from urandom, call it a day. AEZ: Has nonce-misuse resistance baked in.
2 replies 0 retweets 0 likes -
Replying to @CiPHPerCoder
All of these tweets are up for debate. I'm probably wrong on at least most of these points. Except SPHINCS > XMSS. I think stateless wins.
1 reply 0 retweets 1 like
It doesn't exist yet but anything with short public keys and signatures will win.
-
-
Replying to @jedisct1
Yeah, 1Mb public keys for McEliece seems a bit unwieldy
0 replies 0 retweets 0 likesThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.