Crypto-apocalypse soon? Chinese researchers find a potential quantum attack on classical encryption

Re: What about cryptographic hashes in crypto-currencies

I've asked this a few times to crypto "SME" (lol) audiences, and it's like the emperors new clothes, they just want to ignore it. It's literally hands over ears and "blah blah blah". No confirmation, no denial.

I wish I could help you and answer, but I'm still clueless :D

Re: What about cryptographic hashes in crypto-currencies

I searched for "is sha-256 quantum resistant?" in Google Scholar and got this link among the results:

Stewart I., Ilie D., Zamyatin A., Werner S., Torshizi M. F. and Knottenbelt W. J. 2018. "Committing to quantum resistance: a slow defence for Bitcoin against a fast quantum computing attack", R. Soc. Open Sci.5180410, http://doi.org/10.1098/rsos.180410

Abstract

Quantum computers are expected to have a dramatic impact on numerous fields due to their anticipated ability to solve classes of mathematical problems much more efficiently than their classical counterparts. This particularly applies to domains involving integer factorization and discrete logarithms, such as public key cryptography. In this paper, we consider the threats a quantum-capable adversary could impose on Bitcoin, which currently uses the Elliptic Curve Digital Signature Algorithm (ECDSA) to sign transactions. We then propose a simple but slow commit–delay–reveal protocol, which allows users to securely move their funds from old (non-quantum-resistant) outputs to those adhering to a quantum-resistant digital signature scheme. The transition protocol functions even if ECDSA has already been compromised. While our scheme requires modifications to the Bitcoin protocol, these can be implemented as a soft fork.

See whether this answers your questions.

The risk of quantum computers

For something like bitcoin is that the algorithm it uses is fixed. It can't use more bits in its existing algorithm, or switch to an algorithm that's more resistant.

An even bigger issue is that there is significant financial incentive to being the first to break bitcoin. Obviously its value becomes zero when that first break is known, but if someone would develop that ability but rather than publishing papers about it put it to use, they could steal billions of dollars before the bitcoin community started to figure out what was happening.

The trick is you have to develop this capability in secret. If word gets out that someone is close, the value will plummet as everyone runs for the hills so instead of stealing billions you'd only be able to steal millions.

Re: Something's fishy...

Research, and maybe even more so research in China, is cut throat. There is a constant stream of "exaggeration" and backlash to that over "exaggeration". The "new angle" part might be true, but that's still far from being a threat to encryption. Not giving all the details under color of "security & secrecy", keeps it from being subjected to world review which would find the weaknesses in the claim.

Re: Assumption Alert!!

I was thinking in the same direction, though "quantum computers" aren't necessarily needed. Look at the encryption used 30 years ago. Modern machines can break it pretty easily. Today's encryption is likely to be easily broken using whatever tech we have at hand in 30 years.

Re: Assumption Alert!!

Dictionary ciphers are not effective and only appear in B grade films.

Postscript: this comment was based on the article here and what the linked south china morning post article writes. I cannot read Chinese, but from the English abstract, cited references at the end, abbreviations and formulas in the text of the linked paper it seems to be about application of global minimization algorithms to searching for prime factors. Not sure how the scmp article and the paper are related.