Daniel J. Bernstein@djb@mastodon.cr.yp.to

Home | Notifications | New Note | Local | Federated | Search | Logout

Daniel J. Bernstein@djb@mastodon.cr.yp.to

Designing cryptography (deployed now: X25519, Ed25519, ChaCha20, sntrup, Classic McEliece) to proactively reduce risks. Coined phrase "post-quantum" in 2003.

Microblog (including tweet archive): https://microblog.cr.yp.to
Blog: https://blog.cr.yp.to
Joined: 2026-04-19 06:03:55
1 notes, 0 following, 0 followers


Daniel J. Bernstein@djb@mastodon.cr.yp.to (2026-04-18 14:01:02)
"Safety blanket" in https://web.archive.org/web/20260414114106/https://soatok.blog/2026/04/13/hybrid-constructions-the-post-quantum-safety-blanket/ and https://web.archive.org/web/20260418021002/https://symbolic.software/blog/2026-04-13-hybrid-constructions/ tells typical readers: using ECC+PQ, not just PQ, is for familiarity, not security. Huh? Millions of sessions used CECPQ2b=ECC+SIKE. ECC is the _only_ reason those weren't instantly exposed to the SIKE break.