Sign In
Learn bits
Science & Tech.
Mahesh

04/03/24 11:38 AM IST

Apple’s PQ3 protocol

In News
  • Recently, Apple announced PQ3, a post-quantum cryptographic protocol, to encrypt conversations in iMessage.
PQ3 Protocol
  • Currently, most messaging apps use standard encryption methods using public and private keys to securely deliver messages.
  • There are two encryption methods. In the public key encryption method, a user’s message is encrypted by the public key before transmission and then the private key is used to decrypt messages.
  • In the private key method, while both keys are required, they are basically the same, and both the sender and the recipient are allowed to encrypt or decrypt the message.
  • Apple’s PQ3 protocol uses a hybrid design combining the traditional encryption methods with post-quantum encryption both during the initial key establishment between devices and during rekeying, which essentially rechecks the cryptographic keys between devices to ensure continued protection.
  • Under PQ3 protocol each device generates public keys locally and then transmits them to Apple servers as part of the iMessage registration process using the Module Lattice-based Key Encapsulation Mechanism or ML-KEM.
  • This enables the sender device to get the receiver device’s public keys and generate post-quantum encryption keys for the first message.
  • Apple has also included a periodic post-quantum rekeying mechanism within the conversation which is capable of self-healing from key compromise and safeguarding future messages.
Why this change?
  • Currently, Apple’s iMessage supports end-to-end encryption by default. This mode of protection relies on mathematical problems that could potentially be solved by powerful quantum computers.
  • Apple says extremely well-resourced attackers can mount attacks by taking advantage of the drop in data storage costs.
  • Essentially, attackers can store large amounts of today’s encrypted data and file it for future reference. And though attackers may not be able to decrypt this data today, they can retain it until it can be decrypted at a later date by making use of a quantum computer.
Benefits & Limitations
  • The PQ3 protocol protects communications on iMessage against current and future decryptions. It also limits how many past and future messages can be decrypted with a single compromised key, reducing the impact of key compromises.
  • But, despite its enhanced protection, the PQ3 protocol, because of its intended application scenario, does not address group messaging, authentication against quantum adversaries, or cryptographic deniability.
  • Also, messages stored in iCloud may not be protected by this protocol.
  • The new protocol from Apple enhances security on iMessage and provides protection against future attacks using quantum computers, it is not a one-stop solution.
  • And users concerned about the protection of their data should not rely only on post-quantum cryptographic protocols. 
Are other messaging services also using methods like PQ3?
  • Currently in beta, PQ3 will start to roll out with the public release of iOS 17.4, iPadOS 17.4, macOS 14.4, and watchOS 10.4. However, this is not the first time a tech company has announced post-quantum encryption protocols.
  • Earlier in September 2023, Signal announced advancements in quantum resistance for the Signal Protocol.
  • The upgrade called PQXDH added a layer of protection against the threat of quantum computers being built for the future.
  • The upgrade used a new post-quantum cryptosystem that implemented one-way functions that cannot be advantageously reversed by a quantum computer.
Source- The Hindu

More Related Current Affairs View All

14 Nov

India’s tea, sugar exports raise sustainability concerns at home

'India is one of the world’s largest agricultural product exporters.' The Indian agricultural export is valued at $53.1 billion in 2022-2023, up from $8.7 billion in 2004-

Read More

14 Nov

Superbugs and the looming public health crisis

'LESS than a hundred years ago, antibiotics ushered in an era that transformed medical care.' It saved millions of lives and accelerated the development and use of complex surge

Read More

13 Nov

Healthy longevity initiative

'The World Bank report proposes a healthy longevity initiative (HLI) which takes a life course approach.' Briefly, healthy longevity entails sharply reducing avoidable death and

Read More

India’s First Ai-Driven Magazine Generator

Generate Your Custom Current Affairs Magazine using our AI in just 3 steps