Contrary to popular superstition, AES 128 is just fine in a post-quantum world
Summary
AES 128 is a widely used encryption method considered secure even against future quantum computers. Quantum computing does not reduce its security strength as much as some believe because its special quantum algorithm cannot be easily split into smaller tasks to speed up an attack.Key Facts
- AES 128 stands for Advanced Encryption Standard with a 128-bit key size.
- It was adopted by the U.S. National Institute of Standards and Technology (NIST) in 2001.
- AES 128 has no known weaknesses and resists attacks for billions of years using current classical computing power.
- Some people misunderstood Grover’s algorithm and thought quantum computers would reduce AES 128’s security by half.
- Grover’s algorithm does not speed up attacks as much as assumed because it cannot easily divide the task among many processors like normal computers can.
- Trying to parallelize the quantum attack can actually make it slower.
- Expert Filippo Valsorda explains that AES 128 remains strong in a future with quantum computers.
- This means current efforts should focus on realistic post-quantum cryptography problems instead of discarding AES 128 prematurely.
Read the Full Article
This is a fact-based summary from The Actual News. Click below to read the complete story directly from the original source.
