1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Google Chrome's new post-quantum cryptography is causing some iss

    From TechnologyDaily@1337:1/100 to All on Mon Apr 29 10:15:05 2024
    Google Chrome's new post-quantum cryptography is causing some issues

    Date:
    Mon, 29 Apr 2024 10:00:00 +0000

    Description:
    Some sites are refusing to work with Chrome 124s default quantum-resistant hybridized tool heres what to do.

    FULL STORY ======================================================================

    Some Google Chrome users are reporting problems connecting to websites, servers and firewalls following the release of Chrome 124 earlier this month, according to Bleeping Computer .

    The latest version of the browser introduced the new quantum-resistant X25519Kyber768 encapsulation mechanism, which was enabled by default.

    Testing of the post-quantum secure TLS key encapsulation mechanism started last August, but since its public launch, it has already caused a headache
    for the browsers users. Quantum-resistant cryptography is breaking Chrome for some users

    An email sent on behalf of Chromes security workers explains the necessity behind implementing quantum-resistant tools now, despite the current threat being minimal:

    This protects users traffic from so-called store now decrypt later attacks,
    in which a future quantum computer could decrypt encrypted traffic recorded today.

    A separate blog post confirms the nature of the advanced tool: This is a hybrid X25519 and Kyber768 key agreement based on an IETF standard.

    Despite months of testing, the problem seems to have risen from web servers failing to adequately implement TLS, rather than an issue with Chrome. The error results in the rejection of connections that use the Kyber768 quantum-resistant key agreement algorithm, including connections with Chromes hybrid key.

    Clearly, this is not a simple fix that can be implemented by Chrome, but it requires a larger and more orchestrated effort to transform the Internet into one that can handle sophisticated quantum-safe cryptography.

    For now, affected users are being advised to disable the TLS 1.3 hybridized Kyber support in Chrome. However, long-term post-quantum secure ciphers will be essential in TLS, and the ability to disable the feature will likely be removed in the future, highlighting the importance of addressing the issues route cause earlier on so that websites can be prepared for quantum-based attacks in the future. More from TechRadar Pro Apple future-proofing iMessage to protect against the scary future of quantum computing hacking These are
    the best privacy tools and anonymous browsers Weve rounded up a list of the best VPNs



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/google-chromes-new-post-quantum-cryptog raphy-is-causing-some-issues


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)