Is there a quantum resistance analog to ECDSA?

konovalets (OP)

Sr. Member

Offline

Activity: 248
Merit: 250

Is there a quantum resistance analog to ECDSA?

October 17, 2016, 10:25:28 AM

Bitcoin uses ECDSA algorithm to create private keys and public keys (addresses) now. Does somebody know a quantum resistance analog of such algorithm which is good enough to be used in practice?

DannyHamilton

Legendary

Offline

Activity: 3514
Merit: 4894

Re: Is there a quantum resistance analog to ECDSA?

October 17, 2016, 10:49:35 AM

Here:
http://lmgtfy.com/?q=quantum+resistant+public+key+algorithm

Searinox

Full Member

Offline

Activity: 147
Merit: 100

Do you like fire? I'm full of it.

Re: Is there a quantum resistance analog to ECDSA?

October 17, 2016, 11:07:32 AM

Microsoft published a library for quantum-resistant digital signature algorithm called SIDH which is at present one of the most promising candidates. By theory it has 192 bits of classic resistance and 128 bits of quantum resistance. Like all things crypto, SIDH - and any replacement - will need a few years of real-world scrutiny in a quantum computer future to be considered safe for broader implementation, and then likely another few decades before, and if, it attains the status of unbreakable. SIDH is based around elliptic curves just like ECDSA.

konovalets (OP)

Sr. Member

Offline

Activity: 248
Merit: 250

Re: Is there a quantum resistance analog to ECDSA?

October 20, 2016, 05:34:07 PM

Quote from: DannyHamilton on October 17, 2016, 10:49:35 AM

Here:
http://lmgtfy.com/?q=quantum+resistant+public+key+algorithm

Thank you, bro

I think it obviously that I did some research before starting this topic. But it seems that all algorithms I found are prototypes and they weren't used in real applications.

amaclin

Legendary

Offline

Activity: 1260
Merit: 1019

Re: Is there a quantum resistance analog to ECDSA?

October 21, 2016, 03:35:00 PM

Quote from: konovalets on October 20, 2016, 05:34:07 PM

But it seems that all algorithms I found are prototypes and they weren't used in real applications.

Quantum computers do not exist even in prototypes Grin

konovalets (OP)

Sr. Member

Offline

Activity: 248
Merit: 250

Re: Is there a quantum resistance analog to ECDSA?

October 21, 2016, 05:50:02 PM

Quote from: amaclin on October 21, 2016, 03:35:00 PM

Quote from: konovalets on October 20, 2016, 05:34:07 PM

But it seems that all algorithms I found are prototypes and they weren't used in real applications.

Quantum computers do not exist even in prototypes Grin

When they will appear in prototypes it will be too late for us to seek a reliable solution. And it's possible that when it will happen we won't know about it for some time. There is good website about it:

https://pqcrypto.org

I'm asking about algorithm which is good for today purposes and could be good for post quantum era theoretically. And it should be already implemented in code of course.

QRL

Newbie

Offline

Activity: 24
Merit: 0

Re: Is there a quantum resistance analog to ECDSA?

April 13, 2017, 07:13:24 AM

I would like to point you to https://bitcointalk.org/index.php?topic=1730273.0

ArcCsch

Full Member

Offline

Activity: 224
Merit: 117

▲ Portable backup power source for mining.

Re: Is there a quantum resistance analog to ECDSA?

April 15, 2017, 02:27:34 AM

Yes, extended Merkle-Lamport signatures (can be made reusable at the cost of increased length), they are based on hash functions, but are too large and unwieldy for practical use.

If you don't have sole and complete control over the private keys, you don't have any bitcoin! Signature campaigns are OK, zero tolorance for spam!

1JGYXhfhPrkiHcpYkiuCoKpdycPhGCuswa

Pages: [1]

Bitcoin Forum > Bitcoin > Development & Technical Discussion > Is there a quantum resistance analog to ECDSA?

« previous topic next topic »