Why haven't quantum computers factored 21 yet?

(algassert.com)

335 points ingve | 2 comments | 31 Aug 25 12:14 UTC | HN request time: 0s | source

Show context

AceJohnny2 ◴[31 Aug 25 14:24 UTC] No.45083369[source]▶

What does this mean about the size (and thus feasibility) of a circuit required to factor a cryptographically interesting number, say, to be generous, RSA1024?

replies(3): >>45083384 #>>45083585 #>>45085971 #

Davidzheng ◴[31 Aug 25 14:50 UTC] No.45083585[source]▶

>>45083369 #

Off topic, but are cryptographers convinced that on the new gigawatt data centers RSA1024 is infeasible to factor? I gather that the fastest known algorithms are still too slow to factor it in reasonable time. But is consensus that there will not be improvements to these algorithms in near future?

replies(5): >>45083630 #>>45083640 #>>45084065 #>>45084254 #>>45087766 #

rwmj ◴[31 Aug 25 14:56 UTC] No.45083640[source]▶

>>45083585 #

Number Field Sieves are still the best method, and the techniques are three or more decades old with only incremental improvements. (Of course there might be an incredible breakthrough tomorrow.)

replies(1): >>45083688 #

tiahura ◴[31 Aug 25 15:01 UTC] No.45083688[source]▶

>>45083640 #

best published method

replies(2): >>45084217 #>>45084376 #

consp ◴[31 Aug 25 16:06 UTC] No.45084217[source]▶

>>45083688 #

Are the bitcoins in the first wallets gone? No? I will assume it's still the best method without any irrefutable evidence.

replies(2): >>45084251 #>>45084273 #

tripplyons ◴[31 Aug 25 16:11 UTC] No.45084273{3}[source]▶

>>45084217 #

Bitcoin uses ECDSA to sign transactions, not RSA.

In addition, selling information to a government on how to break either system would be more valuable than the amount of bitcoin you would able to sell before exchanges stop accepting deposits or the price crashes.

replies(3): >>45084418 #>>45084444 #>>45085452 #

1. aleph_minus_one ◴[31 Aug 25 16:30 UTC] No.45084444{4}[source]▶

>>45084273 #

> In addition, selling information to a government on how to break either system would be more valuable

Honest question because one can find such claims very often on forums like HN:

Does there really exist a "feasible" way how some "lone hacker" could sell such information to some government and become insanely rich?

I know that people who apparently have some deep knowledge about how exploit markets work claimed on HN that "if you have to ask how/where to solve your exploit (i.e. you have the respective contacts), you are very likely not able to".

This latter observation seems a lot more plausible to me than the claim often found on HN that some "lone individual" would be able to monetize on it if he found a way how to break ECDSA or RSA by selling it to some government.

replies(1): >>45085411 #

2. dfedbeef ◴[31 Aug 25 18:07 UTC] No.45085411[source]▶

>>45084444 (TP) #

Yes. Start what's known as "a company".

↑