February 23, 2024 at 02:25PM
Apple is enhancing iMessage with the quantum-computing resistant PQ3 protocol, providing Level 3 security with post-quantum cryptography. The revamped protocol, integrating post-quantum and classical algorithms, ensures resilience against key compromise and incorporates Kyber for key generation. The update, due in March, aims to address potential quantum computing threats. Signal disputes Apple’s cryptographic superiority claims and emphasizes its own machine-verified post-quantum security proof.
The meeting notes highlight Apple’s addition of the quantum-computing resistant PQ3 protocol to iMessage, making it the most secure mainstream messaging app. The PQ3 will start appearing in March 2024, offering enhanced security features. It follows iMessage’s Contact Key Verification enhancement and is backed by mathematical validation.
Apple designated Signal’s PQC capability as Level 2 security and claims PQ3 achieves Level 3 security. The protocol is supported by renowned researchers and is currently in beta with developers. Unlike swapping out the current encryption algorithm, Apple rebuilt the iMessage cryptographic protocol from scratch, integrating post-quantum algorithms and existing Elliptic Curve algorithms.
Signal disputes Apple’s comparison, emphasizing its own achievements and partnerships with the research community. Despite skepticism about the long-term capabilities of PQC algorithms, industry experts highlight the importance of crypto agility and mention reports that the first quantum computer capable of breaking existing encryption isn’t expected before 2035.
Apple underlines the significance of quantum-resilience due to the practice of “harvest now, decrypt later,” which is a concern for organizations like health care providers.
Let me know if there’s anything specific you need to be highlighted or summarized differently!