Every P-256 or X25519 ECDH operation uses a new ephemeral single-use key breakin... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		wolf550e on Oct 24, 2023 \| parent \| context \| favorite \| on: Why we don’t generate elliptic curves every day Every P-256 or X25519 ECDH operation uses a new ephemeral single-use key breaking which is about as hard as brute forcing AES-128. Global bitcoin hash rate is something like 90 bits per year. People think NSA doesn't have more hardware than all the bitcoin miners together. If they can break 128 bit security, they can't break it for every roundtrip in a Signal chat. I don't know what they would even use the capability to do. I don't think they need brute force to forge a Microsoft or Apple signature - easier to steal it. But it would be something high value that would be broadly useful, not a single message.

adgjlsfhk1 on Oct 24, 2023 [–]

and more importantly, any operation that needs that much compute power can be more efficiently solved by passing around a couple billion dollars of bribes

lazide on Oct 24, 2023 | [–]

Or blackmailing the right person.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact