Cracking Weak Cryptography Before Quantum Computing Does
Worries over crypto's defenselessness against quantum computing has inspired a project that automates the discovery of insecure cryptographic algorithms in open source software.
Quantum computing could undermine widely used public-key encryption, driving research into quantum-resistant algorithms and secure migration planning.
Search across headline titles and summaries.
Background for this topic.
Quantum computing uses quantum-mechanical effects in qubits to solve some problems differently from conventional computers. In information security, its significance is primarily cryptographic: a sufficiently capable, fault-tolerant quantum computer could use Shor’s algorithm to break RSA and elliptic-curve cryptography, which protect certificates, key exchanges, signatures, and encrypted archives. Quantum computing is not expected to break all cryptography equally; symmetric encryption and cryptographic hashes generally require larger security parameters rather than replacement for the same reason.
The practical concern is “harvest now, decrypt later”: adversaries can collect encrypted traffic today for future decryption, especially when data must remain confidential for years. Organizations should inventory public-key algorithms and long-lived sensitive data, assess dependencies such as certificates and protocols, and plan migration to standardized post-quantum cryptography with crypto-agile systems. Quantum key distribution is a separate, specialized communications approach; it does not replace endpoint security, authentication, or conventional key-management controls and has significant deployment constraints.
Worries over crypto's defenselessness against quantum computing has inspired a project that automates the discovery of insecure cryptographic algorithms in open source software.
Routers in Peril, Battling Burnout, Teaching ChatGPT to Attack and MoreWinter in London features Hyde Park's Winter Wonderland, Christmas lights galore, and the return of the Black Hat Europe cybersecurity conference, featuring briefings on everything from quantum cryptography and router pwning to dissecting iOS zero-days and training generative AI to attack.