"KyberSlash Attacks Put Quantum Encryption Projects at Risk"

According to researchers at Cryspen, multiple implementations of the Kyber Key Encapsulation Mechanism (KEM) for quantum-safe encryption are vulnerable to a set of flaws called KyberSlash that enable secret keys to be recovered. CRYSTALS-Kyber is the official implementation of the KEM and a part of the CRYSTALS (Cryptographic Suite for Algebraic Lattices) algorithm suite. It was designed for general encryption and is part of the algorithms selected by the National Institute of Standards and Technology (NIST) to withstand attacks from quantum computers. Mullvad VPN and Signal Messenger are two popular projects that use Kyber implementations. This article continues to discuss potential KyberSlash attacks.  

Bleeping Computer reports "KyberSlash Attacks Put Quantum Encryption Projects at Risk"

Submitted by grigby1

Submitted by grigby1 CPVI on