Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Encryption IBM Bitcoin

IBM Warns Quantum Computing Will Break Encryption (zdnet.com) 197

Long-time Slashdot reader CrtxReavr shares a report from ZDNet: Quantum computers will be able to instantly break the encryption of sensitive data protected by today's strongest security, warns the head of IBM Research. This could happen in a little more than five years because of advances in quantum computer technologies. "Anyone that wants to make sure that their data is protected for longer than 10 years should move to alternate forms of encryption now," said Arvind Krishna, director of IBM Research... Quantum computers can solve some types of problems near-instantaneously compared with billions of years of processing using conventional computers... Advances in novel materials and in low-temperature physics have led to many breakthroughs in the quantum computing field in recent years, and large commercial quantum computer systems will soon be viable and available within five years...

In addition to solving tough computing problems, quantum computers could save huge amounts of energy, as server farms proliferate and applications such as bitcoin grow in their compute needs. Each computation takes just a few watts, yet it could take several server farms to accomplish if it were run on conventional systems.

The original submission raises another possibility. "What I wonder is, if encryption can be 'instantly broken,' does this also mean that remaining crypto-coins can be instantly discovered?"
This discussion has been archived. No new comments can be posted.

IBM Warns Quantum Computing Will Break Encryption

Comments Filter:
  • crypto-coins? (Score:5, Insightful)

    by DogDude ( 805747 ) on Saturday May 19, 2018 @04:38PM (#56640044)
    What I wonder is, if encryption can be 'instantly broken,' does this also mean that remaining crypto-coins can be instantly discovered?

    This could theoretically be the biggest breakthrough in computing since transistors, and this person is wondering about how it's going to affect Monopoly money? Jesus.
    • by jetkust ( 596906 )

      What I wonder is, if encryption can be 'instantly broken,' does this also mean that remaining crypto-coins can be instantly discovered? This could theoretically be the biggest breakthrough in computing since transistors, and this person is wondering about how it's going to affect Monopoly money? Jesus.

      Yes. That "monopoly money" is kind of a big thing. And it uses encryption. Which is what this is about.

    • Re: (Score:2, Interesting)

      by digitig ( 1056110 )

      This could theoretically be the biggest breakthrough in computing since transistors, and this person is wondering about how it's going to affect Monopoly money? Jesus.

      Yes, because the computer farms doing blockchain proof of work are devastating for the environment. If blockchain dies, there's a much better chance of there still being a habitable world for my grandchildren. The sort of person heavily into cryptocurrencies tends to be the sort of person who either doesn't believe humans have any impact on climate change or has wet dreams about helping cause widespread devastation, so it needs something external to kill them.

    • I doubt it. I suspect this to be the rantings of a company head and board that have missed the starting gun on a technology and are looking to put the break on so they can play catch up to those that are years ahead. Think Microsoft and the web as an example.
  • ...and how about private keys? Especially in the console world, that would come in quite handy so paying for quantum computer time via crowdfunding to discover Sony's, Nintendo's, etc. private signing keys could become a thing.
    • ...and how about private keys? Especially in the console world, that would come in quite handy so paying for quantum computer time via crowdfunding to discover Sony's, Nintendo's, etc. private signing keys could become a thing.

      The encryption only gets easier to break, not trivial. We would only have to double the number of bits.

      • by skids ( 119237 )

        We would only have to double the number of bits.

        That's for a different class of problem. QC is a much bigger threat to all widely deployed asymmetric key exchange schemes and public key systems. Basically this means any conversation that is recorded now may be decrypted later, since almost nothing uses offline-pre-shared keys these days... that model just does not fit how the world wants to use cryptography.

        Pilot implementations of the new post-quantum key exchanges (kex) are already starting to become available e.g. as strongswan plugins, but they mig

  • "does this also mean that remaining crypto-coins can be instantly discovered?"

    No, that's not how the minting of new coins work, at all.

    There are theoretical issues where someone might learn your private key from seeing a transaction, but they're mitigated for all new addresses and usage.

    https://en.bitcoin.it/wiki/Qua... [bitcoin.it]

  • by jythie ( 914043 ) on Saturday May 19, 2018 @04:48PM (#56640086)
    I am thinking back to the saying 'AI, like fusion, has been 10 years away for 30 years now'. I think that quote was from the 60s or 70s, so add a few decades. The earth shattering predictions for quantum computers have been around for a while and they are always 'just about to be realized', but even today it is cheaper to emulate quantum computers on traditional machines than to actually build and use them. It is questionable, given advances in traditional semi-conductors, if it will EVER be cheaper to use quantum computing, even for the tasks it is best suited for.
    • We know for sure that converting matter into energy by nuclear fusion works fine - both the sun and hydrogen bombs are certain proof of that.

      For "quantum computing", on the other hand, there is no proof yet that they are ever going to perform any better than conventional computers. It is currently just a theory based on a model that predicts such.

      I for one still don't believe that quantum computers will perform better at anything but emulating themselves than conventional computers - much like the analo
      • by jythie ( 914043 )
        Think about fusion not in terms of working or not, but instead if it preforms in a more economic manner than other power sources. Fusion and quantum computing both currently 'work' in that the underlying mechanics have been demonstrated to happen in the real world, but neither scales well enough to work better than competing technologies. That is what I was trying to get at, at least ^_^ I do not think anyone (at least in the field) believes quantum computers will ever replace conventional ones for gener
  • by Dwedit ( 232252 ) on Saturday May 19, 2018 @04:49PM (#56640090) Homepage

    Wasn't elliptic curve cryptography supposed to be resistant to quantum computers?

  • Both (Score:5, Funny)

    by dilvish_the_damned ( 167205 ) on Saturday May 19, 2018 @05:02PM (#56640130) Journal

    The original submission raises another possibility. "What I wonder is, if encryption can be 'instantly broken,' does this also mean that remaining crypto-coins can be instantly discovered?"

    Yes and No.

  • by Anonymous Coward

    Yes, quantum computers will eventually allow people to crack the private keys for most cryptocurrency wallets. However, some projects are already working to address this. The best example is Quantum Resistant Ledger (QRL), which is redesigned from the ground up to use quantum proof crypto algorithms. Look it up, they have a lot of info on exactly HOW quantum computers will affect cryptocurrencies, and other related data.

  • by Dallas May ( 4891515 ) on Saturday May 19, 2018 @05:07PM (#56640158)

    Of course the alternate encryption like that which IBM recommend happens to be owned by IBM. Better buy in now!

  • by Idisagree ( 4302481 ) on Saturday May 19, 2018 @05:08PM (#56640162)

    Article is very light on evidence of any new form of successful attack so it's a bit premature to advise the sky is falling just yet!

    Better encryption methods are always being worked on and we will phase out the old encryption methods when they become stale and move onto more resistant types.

    As it so happens there are already some constructions (and they have been around for some time) that can be used such as Ring-LWE and NTRU which have been shown to hold up against classic and Quantum based attacks.

    I'm going back to my bowl of cereal now.

  • Quantum computing has been long on promises and short on delivery for decades now. If you can break our encryption in less time than it takes to make a cup of coffee then show us the money. How about a public demonstration where in 15 minutes or less you break the private keys of all of the big certificate authorities and issue yourself fake certificates for Google, Apple, Facebook and Netflix signed with those cracked private keys?

  • Anything is possible here but this seems like an irresponsible prediction when we don't have a single practical example of this technology "actually" working either as a machine we designed or as some natural phenomenon that we've observed. Which is not to say we haven't studied the subject... but we don't actually know that quantum physics can be used in this manner.

    • by Nemyst ( 1383049 )
      Uh, you must've missed the proof of concept quantum computers which used Shor's algorithm to factor large numbers, which is the only requisite step to break traditional asymmetrical encryption like RSA. The proof worked with 21 [nature.com] as a "large" number, but since it's been shown to work, the rest is just scaling up.

      The scaling up is probably going to take longer than five years, but on the other hand we are not aware of what the NSA is doing in secret. Funding is the big deal there and that's one thing they're
  • by CaptainDork ( 3678879 ) on Saturday May 19, 2018 @05:29PM (#56640232)

    ... when quantum computing is capable of breaking current encryption, that same computer will be providing unbreakable encryption [scitation.org].For example:

    . A. Ekert, “Quantum cryptography based on Bell’s theorem,” Phys. Rev. Lett.0031-9007 https://doi.org/10.1103/PhysRe... [doi.org] 67, 661–663 (1991). Google ScholarCrossref, CAS

    • by Nemyst ( 1383049 )
      Problem with that logic is that you won't be able to transition to the new encryption scheme smoothly. There's invariably going to be a gap period where quantum computers able to break current encryption are available but quantum encryption isn't yet widespread. Knowing the industry and how many people will readily skimp on IT for a few bucks more profit, I expect it'd take years to make such a transition.
      • Chicken or egg ...

        The key (pun intended) is "current encryption."

        There are problems, particularly theoretical math, that quantum computers can't solve.

        Encryption will be moving in that direction.

        • nope, no one knows what that would be.

          that's why the statement of "alternatives" in summary about is hilarious, it is not known what alternatives at present, or if any of them, would be resistant to quantum cracking.

          Instead those agencies that can afford a quantum computer will be cracking communications, finances, etc.

          Maybe they'll make it illegal for us to own quantum computer, only governments get to play. Similar things have been done before, such as "encryptions x,y, and z are munitions"

  • If quantum computing will be able to break encryption, why can't quantum computing be used to create better encryption?

  • Quantum computers will solve current encryption algorithms as soon as we solve general AI. Oh, wait ...
  • by manu0601 ( 2221348 ) on Saturday May 19, 2018 @07:05PM (#56640536)

    It has been known for years that quantum computers will break RSA using the Shor algorithm.

    The interesting question, which is not answered in TFA, is: what algorithms are resistant to quantum computers? Do we have some available in TLSv1.3?

  • IBM is known as (Score:4, Insightful)

    by zaphirplane ( 1457931 ) on Saturday May 19, 2018 @07:21PM (#56640598)

    The company that sheds jobs, non stop revenue door and off shoring jobs
    Their insights are marketing equivalent of click bait

  • aArvind Krishna might be an important person but he is hardly in the position to make such bold predictions (he wrote one paper on cryptology from 1990). But setting this aside, even giants in mathematics got it completely wrong when dealing with scalability or predicting the future in research. Quantum computing might theoretically break through complexity barriers but this has not been demonstrated yet. There could be fundamental problems when trying to scale things up. Theoretically things look always ea
  • Quantum computers have the potential to break some types of public key encryption like discrete log (Elgamal) and RSA because of Shor's algorithm, assuming that a large enough quantum computer can even be built.

    However, there are public-key systems like lattice problem and code-based cryptography that quantum computing researchers have made virtually NO progress on in the decades since Shor published his algorithm. Various systems have a few problems, like large plaintext to ciphertext message expansion, bu

  • Comment removed based on user account deletion
  • "Anyone that wants to make sure that their data is protected for longer than 10 years should move to alternate forms of encryption now," Please contact IBM Professional Services for further assistance in this matter.
  • Quantum computers can solve two problems that can affect modern encryption. They force us to double the length of a hash for the same security and they can solve the period of a function. The first application obviously affects hash functions, the second eventually leads to breaking RSA, discrete log type asymmetric functions and many elliptic curve primitives. However they don't make any of this instantaneous. SHA-256 is still safe and the amount of work to massage RSA, Diffie-Hellman and other curre
  • You donâ(TM)t need to break encryption when we have the likes of the FBI and NSA doing everything they can to implement backdoors or subtley weakening the algorithms themselves.

    Compromised software, active trojans and keyloggers, ISP level malware injection, etc means you canâ(TM)t trust anything network connected as it is.

    When the day finally arrives, only the old school methods like the OTP via paper and pencil will remain secure.

  • At the rate in which quantum computing is progressing, I'd bet that things like crypto-coins will implode just fine on their own long before they have to worry about quantum computing causing a problem...

"All the people are so happy now, their heads are caving in. I'm glad they are a snowman with protective rubber skin" -- They Might Be Giants

Working...