Quantum resistance and good crypto algos

[nopeitsnothing]

Update good crypto and recommended post-quantum crypto

Quantum-resistant algorithms

1. SHA3-224, SHA-384 - these are considered very quantum-resistant cryptography, based on an instance of the KECCAK algorithm);
2. SHAKE128 and SHAKE256 (referred to as extendable-output functions (XOFs) via FIPS 202);
3. etc.

Why to avoid SHA-1 (not really detailed besides it being out-of-date)

1. Highly suspicious RBGs such as MS_DRBG still exist in standards such as ISO 18031
2. The AES and SHA2 based DRBGs in current NIST standards are "fine", but don't only listen to NIST, which have a track record of lying about implementations and risks to architectures utilizing the recent algorithms