mleku on Nostr: of course microsoft is at the front of this but there's a problem the cost of cooling ...
of course microsoft is at the front of this but there's a problem
the cost of cooling is exponential with the number of bits
it should be a cubic curve, actually, as heat is entering from 3 dimensions
schnorr's factorization algorithm is still not proven though, they haven't actually done the "reverse a pubkey derivation" on any scale as far as i know
if there's one subject at which the predominant type of chatter that is going on that is fud, it's cryptography
most of what people are saying is not true, most of the obstacles to these supposed attacks is incredibly high and very often depends on "carefully selected" starting values to work at all, and the result has been that the protocols have expanded their security
like elliptic curve signatures and the quality of randomness that is used in the signature
there was a high profile case of a hack of EC i think involving Sony, but it was their PRNG, it was not Cryptographically Secure
almost all signature algorithm implementations have become augmented and texts emphasise the importance of the quality of randomness of signature nonces and this problem is gone
similarly, there will likely be some very marginal increases in ability to break much smaller keys than 256 bits, with the help of quantum factorization algorithms
and these will probably just determine that there is a subset of numbers, related to some factor of the EC group being used, that are weak to this, and bam
oh, sorry, quantum insecure? doesn't matter, everyone is not using those weak numbers anymore because they were found to be weak, and oh dear, now it takes a billion qubits to crack an EC pubkey derivation
not only that, all this hooey about cracking bitcoin
that's why bitcoin addresses are not the pubkeys, they are a hash of teh pubkey, and the actual pubkey isn't known until the UTXO is spent, and that's the cat out of the bag, sorry
most likely, by switching to schnorr algorithm (untweaked taproot) and upping the security of the address hash to 256 bits and bitcoin kicks the can another 50 years down the road
but don't let that get in the way of the endless FUD against bitcoin
the cost of cooling is exponential with the number of bits
it should be a cubic curve, actually, as heat is entering from 3 dimensions
schnorr's factorization algorithm is still not proven though, they haven't actually done the "reverse a pubkey derivation" on any scale as far as i know
if there's one subject at which the predominant type of chatter that is going on that is fud, it's cryptography
most of what people are saying is not true, most of the obstacles to these supposed attacks is incredibly high and very often depends on "carefully selected" starting values to work at all, and the result has been that the protocols have expanded their security
like elliptic curve signatures and the quality of randomness that is used in the signature
there was a high profile case of a hack of EC i think involving Sony, but it was their PRNG, it was not Cryptographically Secure
almost all signature algorithm implementations have become augmented and texts emphasise the importance of the quality of randomness of signature nonces and this problem is gone
similarly, there will likely be some very marginal increases in ability to break much smaller keys than 256 bits, with the help of quantum factorization algorithms
and these will probably just determine that there is a subset of numbers, related to some factor of the EC group being used, that are weak to this, and bam
oh, sorry, quantum insecure? doesn't matter, everyone is not using those weak numbers anymore because they were found to be weak, and oh dear, now it takes a billion qubits to crack an EC pubkey derivation
not only that, all this hooey about cracking bitcoin
that's why bitcoin addresses are not the pubkeys, they are a hash of teh pubkey, and the actual pubkey isn't known until the UTXO is spent, and that's the cat out of the bag, sorry
most likely, by switching to schnorr algorithm (untweaked taproot) and upping the security of the address hash to 256 bits and bitcoin kicks the can another 50 years down the road
but don't let that get in the way of the endless FUD against bitcoin