DudemeisterOct 24, 2023
Proton Mail

You may have heard quantum computers will break encryption. That’s a long way off, but Proton is mitigating this risk.

And the difference with our approach is that we’re implementing post-quantum protection for PGP in open collaboration with the community and experts, enabling anyone to analyze & use the standard. It’s post-quantum cryptography for the many, not just the few: https://proton.me/blog/post-quantum-encryption. (1/3)

Proton is building quantum-safe PGP encryption for everyone | Proton

Quantum computers may someday break current encryption. Proton is leading the standardization of quantum-resistant encryption in OpenPGP for all to use.

Proton
Oct 24, 2023 at 7:43pmWeb
Show threadProton MailOct 24, 2023
Everyone deserves access to privacy and encryption. We believe in interoperability – no walled gardens – so we’re standardizing these algorithms within the OpenPGP community and we’ve published our draft proposal for anyone to analyze here: https://datatracker.ietf.org/doc/draft-wussler-openpgp-pqc/. (2/3)
Post-Quantum Cryptography in OpenPGP

This document defines a post-quantum public-key algorithm extension for the OpenPGP protocol. Given the generally assumed threat of a cryptographically relevant quantum computer, this extension provides a basis for long-term secure OpenPGP signatures and ciphertexts. Specifically, it defines composite public-key encryption based on ML- KEM (formerly CRYSTALS-Kyber), composite public-key signatures based on ML-DSA (formerly CRYSTALS-Dilithium), both in combination with elliptic curve cryptography, and SLH-DSA (formerly SPHINCS+) as a standalone public key signature scheme.

IETF Datatracker
Show threadProton MailOct 24, 2023
Proton believes the internet should be private by default. Everyone deserves access to privacy and encryption. By developing post-quantum OpenPGP, we’re making sure everyone will be protected in the event that quantum computers undermine existing encryption methods. (3/3)
Show threadDjromeroOct 24, 2023
@protonmail is this one of those things that only really works if both sender and receiver are using it?
Show threadoctoturt Oct 24, 2023
@Djromero @protonmail i believe protonmail automatically encrypts messages sent between protonmail users, but it's literally impossible to implement encryption across services without every single provider getting together and agreeing to break compatibility with old standards, screwing over anyone who relies on email being an open, decentralized, static ecosystem
Show threadAtemuOct 25, 2023

@Djromero @protonmail

Of course it is. Hence their work on getting this standardised.

Show threadProton MailOct 25, 2023
@Djromero Hi! For improved privacy, yes, both sender and recipient should be using Proton Mail or PGP encryption (https://proton.me/blog/what-is-pgp-encryption). However, we also allow you to send an encrypted email to a non-Proton user: https://proton.me/support/open-password-protected-emails.
What is PGP encryption and how does it work? | Proton

Learn what PGP encryption is and how it works, how secure PGP is, and the simplest way to secure your emails with PGP encryption.

Proton
Show threadDjromeroOct 25, 2023
@protonmail thank you. That’s what I thought. I just wanted to be sure. Keep up the good work!