> I would like to register my strong objection to the publication of this document.
We disagree.
> Hybrid ("double encryption") constructions protect us from classes of attacks
> that pure-PQ
> constructions do not protect us against. Hybrid constructions have a
> negligible overhead
> compared to pure-PQ constructions.
In theory only, ignoring all the practical implications of software and
hardware implementations.
Unfortunately, our “stuff” has to function in a real world, not on paper.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
