Quantumcomputer Encryption [SECURITY THREAT]
"SAVE NOW, DECRYPT LATER" is a big threat to all of our data and it's affecting us already.
Considering Proton is at the frontier of online security and the relatively new announcements of NISTs Quantum Encryption methods, I would suggest you look into applicability of those methods to your services.
I hope this makes it up the ladder, because this SECURITY BREACH AFFECTS EVERY PROTON USER AND EVERY SINGLE INFORMATION: Starting with all email traffic, to drive documents, calendar and even all browser history through ProtonVPN. To go even further, proton users and VPN exit nodes could be specially monitored, considering their interest in privacy and high percentage of journalists and similar people with sensitive information.
Your users would surely all be really glad to hear they're save against "Save now, Decrypt later" attacks, new users would roll over too, and it would set a great example for other industries; and since you're not only at the frontier of online security & privacy but also engineering folk, which translates new research into applicable everyday usage, IF NOT YOU, THAN WHO?
u
shared this idea
-
theoneand33
commented
I would use Proton mail instead of Tuta mail if they added this
-
pedro chromazzi commented
I just want to invite the proton service to use the X25519Kyber768 Post-Quantum Key Exchange during the https communication with the protonMail server. At least, it would be great if this or another NIST advanced PQ encryption was used for every communication with the proton servers. Seems that the power of the actual quantum computers (august 2024) is growing faster than the expectations and that the AES-256-GCM cipher has the counted days. So it could be a critical aspect.