this post was submitted on 20 Dec 2023
18 points (100.0% liked)
technology
22683 readers
1 users here now
On the road to fully automated luxury gay space communism.
Spreading Linux propaganda since 2020
- Ways to run Microsoft/Adobe and more on Linux
- The Ultimate FOSS Guide For Android
- Great libre software on Windows
- Hey you, the lib still using Chrome. Read this post!
Rules:
- 1. Obviously abide by the sitewide code of conduct. Bigotry will be met with an immediate ban
- 2. This community is about technology. Offtopic is permitted as long as it is kept in the comment sections
- 3. Although this is not /c/libre, FOSS related posting is tolerated, and even welcome in the case of effort posts
- 4. We believe technology should be liberating. As such, avoid promoting proprietary and/or bourgeois technology
- 5. Explanatory posts to correct the potential mistakes a comrade made in a post of their own are allowed, as long as they remain respectful
- 6. No crypto (Bitcoin, NFT, etc.) speculation, unless it is purely informative and not too cringe
- 7. Absolutely no tech bro shit. If you have a good opinion of Silicon Valley billionaires please manifest yourself so we can ban you.
founded 4 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
at least for web stuff I don't think they're using anything that isn't also broadly implemented in the west. Nothing that I've seen anyhow, I am also not a china/russia expert. Approved by NIST doesn't mean developed by NIST, they're just standard algos with a government stamp of approval for certain uses. Though NIST definitely does influence the development of some ciphers/implementations, so its worth being skeptical.
I did a little research and didn't find any prominent english language mentions of quantum-resistant ciphers that weren't developed in western aligned countries. But of what I did see NTRU seems like mayyybe the least-sus one since it was developed by mathematicians originally not crypto people, and was so early to the quantum party (1996) that I haven't found reference to NIST influencing its development like I did for several others.
Anyhow I wouldn't assume that NIST approved crypto is always compromised, just do your own research on specific ciphers, there will probably be some nerd out there criticizing them if they were really weakened by nist
Yeah there is a nerd criticizing them πππ which is why I posted this
I'll have a look at NTRU, thank you.
Regarding web stuff I know China pushes its own ciphers, I'm gonna read up on them laterβ’.
damn I didn't realize china had their own TLS ciphers and everything, pretty neat. I haven't seen any substantive criticism of SM4 or its associated hashing function, etc.
Looking into it I found one or two fearmongering sources that go "this is chinese, the ietf only included it for compatibility, DONT USE IT", and a bunch of cryptanalysis papers, mostly from Chinese authors (but written in perfect english which is neat) that seem great but I don't have the expertise to evaluate them in any way.
given that SM4, etc were classified until 2006, a lot of what's cutting edge now is probably classified.
I did find this though: https://en.wikipedia.org/wiki/SM9_(cryptography_standard) which is pretty interesting. I don't know if it's completely novel encryption techniques or if it uses an existing cipher under the hood but regardless very interesting stuff