Anyway my point was that designing new crypto is tricky period, there's nothing special about being resistant to attacks that are efficient on a quantum computer than being resistant to cryptographic attacks in general
On Thu, Feb 26, 2026, 1:01 AM Deirdre Connolly <[email protected]> wrote: > You don't trust AES? > > On Thu, Feb 26, 2026, 12:50 AM Rob Sayre <[email protected]> wrote: > >> On Wed, Feb 25, 2026 at 4:23 PM Deirdre Connolly < >> [email protected]> wrote: >> >>> Many cryptographic designs across all areas have been broken >>> classically. There is a reason there was a ~ten year international >>> competition that started with 88 ~new schemes that was whittled down to ~4 >>> (the NIST PQC series). There was also a NIST competition to select a new >>> block cipher, >>> >> >> No one trusts NIST. But people do trust the IETF. Let's not lose that. >> >> thanks, >> Rob >> >
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
