this post was submitted on 20 Oct 2025
290 points (97.1% liked)
Technology
76274 readers
2800 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Having in mind we are not even close to breaking classical cryptography with quantum computing I doubt this was their best investment of time
Once quantum computers break classical cryptography, it's going to be too late to develop post-quantum cryptography, mate.
The best time to develop resilience is right now.
It's not going to happen this century, probably never
Even if quantum computing turns out to actually be infeasible and classical cryptography is secure for the next millennia, it's still a good feature to have a third independent encryption layer in the protocol. It makes it that much less likely reliant on the other two being bulletproof.
Maybe. I don't know at which point all that extra processing stops being worth it.
How sure are you? Assign a percentage chance to it and the cost of exposing old messages, and compare that to the cost of this dev effort.
We know governments are using it, and there's likely a lot of sensitive data transmitted through Signal, so the cost of it happening in the next 20 years would still be substantial, so even if the chance of that timeline happening is small, there's still value in investing in forward secrecy.
https://www.cs.auckland.ac.nz/~pgut001/pubs/bollocks.pdf
They also want nuclear fusion reactors and there is none in the horizon after 50 years of research and development (even though many want to sell the idea that there are).
You can start preparing for post hypercomputation cryptography too if you believe your argument.
the best time was yesterday. the next best time is today. securing systems after they're broken, when data could actively be collected prior to the breakthrough, is not the way to approach security.
There are nation states just straight up intercepting and storing signal data on their networks in hopes that it can be decrypted in the future. 20 year old messages will still be useful.
Also known as Harvest now, decrypt later. And it's a serious security threats that Signal must consider and handle
Their core feature is secure messaging, so I'd say this result highlights their dedication to the secure aspect of it. So an excellent feature in terms of branding, and probably has more benefits in other places e.g. attracting talent, as developers now can see Signal offers great opportunities to work on complex problems.
So I'm curious; what do you think would be better investment of their time?
Like allowing a federated system instead of a central one, not depending in external libraries and services, and so on. I bet there are many things that would actually improve the security instead of this that is more of a marketing point.
they will not make a federated system and they said so, quite strongly. if you want that you'll need to wait for matrix to grow up.
Simplex is ready today, assuming you just want 1:1 messaging.
There's hardly ever glory in prevention...
It's future-proofing. It means my messages are not only safe today but, even if they are intercepted or leaked somehow, will also be safe in the future.
I doubt that the first ones to break it will be eager to communicate their findings to the public.
This tech is far to valuable for military/spionage goals. For all we know it already exists.
We're as close to quantum computers as we are to ChatGPT becoming sentient.
Lol, it shows the hype quantum computing has sold and how detached the public thought is about it from reality.
I'm friends with two quantum computing researchers and they are pretty sure quantum computing will never be a practical application because of how the noise and errors scale with the system size.
The quantum computing hype is really annoying but we don't know the future. One day there might be a breakthrough in noise reduction. I'd rather signal have post-quantum cryptography and not need it than get blindsided if there is suddenly a qc that can break rsa with shor. Not to mention intelligence agencies doing store now/decrypt later stuff.