Blog - iMessage with PQ3: The new state of the art in quantum-secure messaging at scale - Apple Security Research (security.apple.com)
from kid@sh.itjust.works to cybersecurity@sh.itjust.works on 22 Feb 2024 12:16
https://sh.itjust.works/post/15030672

Apple has announced PQ3, a significant cryptographic update for iMessage, providing Level 3 security with post-quantum cryptography (PQC) for both initial key establishment and ongoing message exchange. This protocol is designed to secure communications against quantum computing threats and has been formally verified for its robust security properties. PQ3 employs a hybrid design, combining current Elliptic Curve algorithms with new post-quantum algorithms, ensuring it’s never less safe than existing protocols. The rollout will begin with upcoming iOS, iPadOS, macOS, and watchOS updates, with iMessage conversations automatically upgrading to PQ3. This protocol represents a major advancement in securing end-to-end encrypted messaging at scale.

#cybersecurity

threaded - newest

Citronnier@sh.itjust.works on 22 Feb 2024 13:59 next collapse

  • Backdoor still available. Call NSA for more information.
loki@lemmy.ml on 22 Feb 2024 14:43 next collapse

has been formally verified for its robust security properties.

How do they formally verify these?

kid@sh.itjust.works on 22 Feb 2024 17:29 collapse

From the article:

This includes a team led by Professor David Basin, head of the Information Security Group at ETH Zürich and one of the inventors of Tamarin — a leading security protocol verification tool that was also used to evaluate PQ3 — as well as Professor Douglas Stebila from the University of Waterloo, who has performed extensive research on post-quantum security for internet protocols.

There is a paper describing the tests.

Not that this settle everything.

Pantherina@feddit.de on 22 Feb 2024 21:21 collapse

Is it E2EE? bullshit apple, bullshit