-
Notifications
You must be signed in to change notification settings - Fork 147
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
sidh: deprecates sidh and sike packages. #359
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
:(
// | ||
// SIDH and SIKE are deprecated as were shown vulnerable to a key recovery | ||
// attack by Castryck-Decru's paper (https://eprint.iacr.org/2022/975). New | ||
// systems should not rely on this package. This package is frozen. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
By "frozen" I suppose you mean that maintenance has stopped and bug fixes won't be considered? Consider saying this explicitly.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Also, there is a small possibility that there will be a fix to SIKE. Although they might call it something else as the changes will be big.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It's frozen in the sense that it's preserved for historical reasons and to indicate people should not use it to secure any system.
Bugs can still appear at anytime in software for many different reasons.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Also there is still code implementing field arithmetic which can be (re)used for other purposes.
A key recovery attack was shown by Castryck-Decru's paper (https://eprint.iacr.org/2022/975) breaking the security of current SIDH and SIKE algorithms.
DEPRECATION NOTICE
SIDH and SIKE are deprecated as were shown vulnerable to a key recovery attack by Castryck-Decru's paper (https://eprint.iacr.org/2022/975). New systems should not rely on this package. This package is frozen.
Changes: