Hi,
I recently received a blog post in my Tutanota mail box regarding Tuta’s push for post-quantum encryption:
https://tuta.com/blog/post-quantum-cryptography
I’m wondering if Cryptomator is also considering this “upgrade” at some point?
Hi,
I recently received a blog post in my Tutanota mail box regarding Tuta’s push for post-quantum encryption:
https://tuta.com/blog/post-quantum-cryptography
I’m wondering if Cryptomator is also considering this “upgrade” at some point?
Cryptomator uses AES256 which is considered quantum safe, so your password remains the weakest link. The Tutanota needed to upgrade, as it was using 2048B RSA which may be weakened by quantum computers in the future using Shor’s algorithm. The main difference is that Cryptomator uses symetric encryption (one key to encrypt and decrypt data) and Tuta uses asymetric encryption (public key to encrypt, private to decrypt).
Thanks for these details! Greatly appreciated!
We are planning to publish a blog post regarding PQC in a couple of weeks. Cryptomator itself is secure as @nikow already mentioned. It is worth noting that Grover’s algorithm reduces the key space to 128bit. But no worries this is still secure. In fact the reason why 256 bit is used with AES is exactly this: Sufficient security margin with quantum computers.
However, we also use ECC in Cryptomator Hub and this needs to be changed. This is what our blog post will cover in detail.