| ▲ | Davidzheng 6 days ago |
| Off topic, but are cryptographers convinced that on the new gigawatt data centers RSA1024 is infeasible to factor? I gather that the fastest known algorithms are still too slow to factor it in reasonable time. But is consensus that there will not be improvements to these algorithms in near future? |
|
| ▲ | rwmj 6 days ago | parent | next [-] |
| Number Field Sieves are still the best method, and the techniques are three or more decades old with only incremental improvements. (Of course there might be an incredible breakthrough tomorrow.) |
| |
| ▲ | tiahura 6 days ago | parent [-] | | best published method | | |
| ▲ | consp 6 days ago | parent | next [-] | | Are the bitcoins in the first wallets gone? No? I will assume it's still the best method without any irrefutable evidence. | | |
| ▲ | tripplyons 6 days ago | parent | next [-] | | Bitcoin uses ECDSA to sign transactions, not RSA. In addition, selling information to a government on how to break either system would be more valuable than the amount of bitcoin you would able to sell before exchanges stop accepting deposits or the price crashes. | | |
| ▲ | aleph_minus_one 6 days ago | parent | next [-] | | > In addition, selling information to a government on how to break either system would be more valuable Honest question because one can find such claims very often on forums like HN: Does there really exist a "feasible" way how some "lone hacker" could sell such information to some government and become insanely rich? I know that people who apparently have some deep knowledge about how exploit markets work claimed on HN that "if you have to ask how/where to solve your exploit (i.e. you have the respective contacts), you are very likely not able to". This latter observation seems a lot more plausible to me than the claim often found on HN that some "lone individual" would be able to monetize on it if he found a way how to break ECDSA or RSA by selling it to some government. | | | |
| ▲ | close04 6 days ago | parent | prev | next [-] | | If a government knows you have such information they’ll take it not buy it. So your best bet would probably be to try to sell as many BTC as possible then give away the solution for free to your/a government. | | |
| ▲ | 6 days ago | parent | next [-] | | [deleted] | |
| ▲ | echelon 6 days ago | parent | prev [-] | | > If a government knows you have such information they’ll take it not buy it. They would probably kill you so you couldn't tell others. If a government can break crypto, that's worth more than money. Especially if it can remain peerless and undetected. |
| |
| ▲ | cyberax 6 days ago | parent | prev [-] | | A method to efficiently factor large numbers will also break the ECDSA. | | |
| ▲ | CamperBob2 6 days ago | parent [-] | | No, ECDSA relies on the hardness of the discrete logarithm problem. Nothing to do with factoring, at least not in the classical sense. On a quantum computer, my understanding is that Shor's algorithm could potentially target both problems, though. | | |
|
| |
| ▲ | capitainenemo 6 days ago | parent | prev [-] | | Well, this discussion is about prime number factorisation, and bitcoins use elliptic curve... |
| |
| ▲ | littlestymaar 6 days ago | parent | prev [-] | | True, we can never know what state actors know that we don't, and my cryptography professor at university taught us that NSA likely had 20 years of mathematical advance over the academic crypto community. That being said, NFS is almost thirty years old so maybe the NSA doesn't have anything better still. |
|
|
|
| ▲ | mcswell 6 days ago | parent | prev | next [-] |
| Fiction, but interesting nonetheless: the 1992 film "Sneakers", with Robert Redford among others. The MacGuffin is a mathematician who discovers another way to factor large numbers. |
|
| ▲ | 6 days ago | parent | prev | next [-] |
| [deleted] |
|
| ▲ | ginko 6 days ago | parent | prev | next [-] |
| It recently occurred to me that now would be the best time ever for state actors to build out massive data centers without anyone noticing. |
| |
| ▲ | tripplyons 6 days ago | parent | next [-] | | I could reasons for them to build datacenters for AI or collecting encrypted messages to decrypt later, but not for brute force attacks on encrypted messages. | |
| ▲ | adgjlsfhk1 5 days ago | parent | prev [-] | | the best time is in a year or two when you just buy the husks when all the ai companies go bankrupt |
|
|
| ▲ | tripplyons 6 days ago | parent | prev [-] |
| I've seen pretty credible evidence that factoring large semiprime numbers is effectively a solved problem, even without considering quantum computing or gigawatt-scale computing. I'm not able to share specifics, but I would personally not trust RSA. |
| |
| ▲ | close04 6 days ago | parent [-] | | People who have seen this evidence don’t go around on the internet bragging they’ve seen this evidence. |
|
