Re: Symmetric Encryption attacked by quantum computers?
From: Ben Rudiak-Gould (br276deleteme_at_cam.ac.uk)
Date: 11/10/05
- Next message: contini_at_matmail.com: "Re: RSA-640 factored"
- Previous message: Paul Rubin: "Re: RSA-640 factored"
- In reply to: Don: "Symmetric Encryption attacked by quantum computers?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 10 Nov 2005 22:16:56 +0000
Don wrote:
> I have read that if you are using a symmetric cipher with a 256 bit
> key, it would take a quantum computer about 2^128 steps to break. How
> is this possible if the computer would still have to brute force the
> algorithm?
Grover's algorithm:
http://en.wikipedia.org/wiki/Grover's_algorithm
Though usually described as "database search" (because Grover called it
that), it's really a way of finding a satisfying assignment of a classical
or quantum circuit in roughly 2^(N/2) times the circuit evaluation time,
where N is the number of inputs.
(The people who said "by superposition" are sort of right, but it's like
saying a classical computer cracks ciphers by loading and storing. One
doesn't automatically get fast computation from superposition -- one needs
an algorithm, and they're hard to find.)
-- Ben
- Next message: contini_at_matmail.com: "Re: RSA-640 factored"
- Previous message: Paul Rubin: "Re: RSA-640 factored"
- In reply to: Don: "Symmetric Encryption attacked by quantum computers?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
