25
votes
The inability to count correctly: Debunking the US National Institute of Standards and Technology's calculation of the cryptographic security level of Kyber-512
Link information
This data is scraped automatically and may be incorrect.
- Title
- cr.yp.to: 2023.10.03: The inability to count correctly
- Word count
- 18 162 words
He writes that
I couldn't find any of this during my internet searches. It's possible, of course, that I'm simply not looking in the right places. I found some stuff like this:
Which doesn't support the original blog necessarily.
I know djb is prominent in the field, but I think he might be looking for malice (he really doesn't like the US government.)
Edit: of course, it's also possible that he's totally right and is just the first to recognize this. Look forward to seeing if this is a story that develops.
DJB gives a very thorough (yet still accessible to non-cryptographers such as myself) walk-through of a pretty basic math error NIST made as part of their standardization process for post-quantum cryptographic algorithms