Nick Mathewson wrote: > Personally, if I were doing something like this, I'd aim closer to > Yawning's "Basket" protocol, which uses an established PQ construction > (ntru in Basket's case) rather than trying to invent a novel one.
While you're asking -- Isn't that like saying who needs SHA-3 because SHA-2 hasn't been proven broken? Why not just use MD-contruct? It uses the same argument, yes, no? Has the future of PQ computing become so well established? Thanks taxakis -- leeroy -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
