this post was submitted on 21 Sep 2023
1060 points (97.7% liked)
Open Source
31066 readers
774 users here now
All about open source! Feel free to ask questions, and share news, and interesting stuff!
Useful Links
- Open Source Initiative
- Free Software Foundation
- Electronic Frontier Foundation
- Software Freedom Conservancy
- It's FOSS
- Android FOSS Apps Megathread
Rules
- Posts must be relevant to the open source ideology
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
- !libre_culture@lemmy.ml
- !libre_software@lemmy.ml
- !libre_hardware@lemmy.ml
- !linux@lemmy.ml
- !technology@lemmy.ml
Community icon from opensource.org, but we are not affiliated with them.
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Signal. Who else is making a post quantum secure e2ee algorithm and making sure the code is open source and not duplicating the keys everywhere? Thank goodness for the kind devs on this project and for other FOSS projects everywhere!
how do we even know something is quantum secure, like the tech isnt out yet is it?
Because we already know how quantum encryption works.
It's like how we proved the Halting Problem was undecideable long before the first computer was ever built.
People have been able to model quantum computers mathematically since the time normal computers were the size of buildings.
This might be helpful: https://m.youtube.com/watch?v=-UrdExQW0cs
I'm guessing they can say the methods of encryption are "1 way" ie unreversable, and therefore quantum resistant (the way that quantum solves equations).
Not quite, no encryption is truly irreversible (that’s the point). We’ve built quantum computers and we know how they work. We found weaknesses in the prime number generation that powers most encryption, so we’ve built around that.
The time when they essentially went closed source to implement MobileCoin in kind of a covert operation really didn't do them any favors, though.
And everyone who uses it should give it a thought whether they can afford to support the devs, signal devs will appreciate it!
Do you count all signal protocol messengers like session too?
Session is definitely an option. They have an interesting decentralization approach but idk if they have quantum resistant e2ee yet.