[messaging] Post-quantum forward-secrecy

Daniel Kahn Gillmor dkg at fifthhorseman.net
Wed Aug 5 14:31:36 PDT 2015

On Wed 2015-08-05 16:48:21 -0400, Martin Albrecht wrote:
> On Wednesday 05 Aug 2015 16:35:29 Jeff Burdges wrote:
>> As I understand it, there are no mature post-quantum Diffie-Hellman
>> alternatives, but NTRU is a relatively mature post-quantum public key
>> system.  Any attempt to use NTRU thus requires three steps.
> You might find
>    Post-quantum key exchange for the TLS protocol from the ring learning with 
>    errors problem
>    Joppe W. Bos and Craig Costello and Michael Naehrig and Douglas Stebila
>    https://eprint.iacr.org/2014/599
> and the works reference therein interesting. 

see also:




for NTRU hybridization with DHE in TLS.


More information about the Messaging mailing list