After a few months of testing, Google has included it in the Chrome 124 an algorithm for the new kriptografik to the protocol in TLS, which must guarantee protection against the attacks of the future to be carried out by a computer kuantikë. Some users have found problems with the connection to the application on the web, and the wall of fire, and the servers, but the company's Mountain View, is not at fault.
The application of the wrong TLS
Will be still a lot of years, before the advent of computers kuantikë, but some companies have already developed solutions, preventive and counter-attacks of the so-called “save now, dekriptoni later,” so they carried out in the computer kuantikë of the future, which can decipher the traffic to the present day.
Kriptografia post-quantum mechanics allows the algorithms in the cloud to have the computers current. Google has developed a way hybrid that combines the output of the two algorithms cryptographic, to create keys in the session used to be deciphered in a relationship TLS. The algorithm of the key eliptik X25519 (which is used today for TLS) have been kombinua with therefore Kyber-768 (of the considered the best of the best, from the National Institute of Standards and Technology) and receive therefore the post-kuantik
This is the latest on the Chrome 124, guarantees the conformity of the remote. This means that the servers and devices in the network need to accept the connections, TLS, taking into account only the X25519 the algoritmit. Due to an error, some of them do not acknowledge the request from client (Chrome 124) which supports therefore the young man.
The problem is the result of the application of the wrong, of the protocol, TLS Algorithm X25519Kyber768 adds to the information in a message to the ClientHello, sent from the client to the server, which includes a version of the TLS, and the nature of the mid. A server could not read the message over, so that the connection is refused.
Users and administrators, it can be çaktivizojnë therefore, the young by the standards and policy. However, Google says that these measures are only temporary, and it will no longer be available in the future. Therefore, the owners of the servers need to fix it defektin it as soon as possible.
Discussion about this post