'Today we are happy to announce the first step in advancing quantum resistance for the Signal Protocol: an upgrade to the X3DH specification which we are calling PQXDH. With this upgrade, we are adding a layer of protection against the threat of a quantum computer being built in the future that is powerful enough to break current encryption standards.'
I'm not a cryptography expert, or even a security expert, or even more than middling proficient with computers. Could someone with actual skill in this field read this and pipe in with an opinion on if this is actually sufficient to start with or just a layer of false security?
Not an expert, but what i read here is that they will be using 2 locks. e.g. one traditional key based lock and another fingerprint based lock, and when you need to open the door, you need to open both the locks.
But does that actually give decent protection against quantum decryption?
I don't actually expect you to answer that question, it's pretty pertinent though.
From https://signal.org/docs/specifications/pqxdh/#passive-quantum-adversaries
Also:
Basically this makes it pointless to collect any data now with the intent to decrypt it in the future - e.g. the NSA collecting all your encrypted messages to decrypt them all in 5-10 years once they have a capable quantum computer.
It does not protect against an active quantum attacker - of which there are currently none, so work in the field is likely expected to continue.
OK, cool, thanks for the disambiguation. So kinda actual protection, but at the same time lip service. I'll take that.
Also remember that this is only a layer of added protection. Work on this will continue. But this is more than what any other player in this market space currently offers.