Feature request: Post quantum crypto

FiloSottile / age

A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.

https://age-encryption.org

BSD 3-Clause "New" or "Revised" License

17.13k stars 501 forks source link

Feature request: Post quantum crypto #55

Closed Paragis closed 3 years ago

Paragis commented 4 years ago

Given that age aims to be the encryption tool for the future, it should include (asymmetric) crypto that will survive the expected arrival of quantum computers.

openssh already has this implemented:

... based on a combination of Streamlined NTRU Prime 4591^761 and X25519. https://www.openssh.com/releasenotes.html

Alternatively the NIST Competition for post-quantum crypto is getting to the final round in summer 2020 https://en.wikipedia.org/wiki/Post-Quantum_Cryptography_Standardization

Macil commented 4 years ago

Do we know if the public keys for these systems are still short enough to use as command-line arguments comfortably, or would a post-quantum age need arguments that are files containing the public keys? I know some post-quantum systems have very large public keys.

cyb3rz3us commented 4 years ago

Given that the exchange method suggested above is still experimental, IMO this seems a bit premature for insertion into 'age' at present.