Beyond Curve25519

Christoph Anton Mitterer calestyo at
Fri Jan 16 05:46:57 CET 2015

On Thu, 2015-01-15 at 21:53 +0100, Hanno Böck wrote: 
> Realistically: Nobody is every going to break 128 bit security level.
> When curve25519 breaks it'll very likely be because of quantum
> computers. But then e-521 will only provide very little extra
> security.
Funny... people told that as well with RSA key sizes which are nowadays
no longer considered enough... o.O

It's really disturbing to read such statements (i.e. "xxx bit security
level will be secure forever - except for quantum computers)... it seems
as nothing would have been learned from the past :-/

So,... I'm looking forward to both, something stroner than Curve25519
and post-quantum.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5313 bytes
Desc: not available
URL: </pipermail/attachments/20150116/2693dbc3/attachment.bin>

More information about the Gnupg-devel mailing list