A post-quantum cryptography (PQC) algorithm developed by researchers at Google and Switzerland's ETH Zurich enables quantum-resistant encryption for FIDO2 security keys.
The FIDO2 industry standard employs the most secure form of built-in two-factor authentication for logging in to websites, but there are concerns about quantum attacks down the road.
The new algorithm combines the elliptic curve digital signature algorithm and the Crystals-Dilithium algorithm, the latter one of three PQC algorithms chosen by the National Institute of Standards and Technology for digital signatures.
To break the new algorithm, attackers would have to defeat both types of encryption.
Another benefit is the small size of its keys in comparison to other PQC algorithms.
Wrote Google's Elie Bursztein and Fabian Kaczmarczyck in a recent Google Security Blog post, "Through careful optimization, we were able to develop a Rust memory optimized implementation that only required 20 KB of memory, which was sufficiently small enough."
From Ars Technica
View Full Article
Abstracts Copyright © 2023 SmithBucklin, Washington, D.C., USA
No entries found