New Chrome version may cause problems
Google’s latest feature to protect Chrome against unwanted decryption using quantum techniques turns out to present problems, writes Bleeping Computer.
So-called “post-quantum cryptography” is used to prepare for a potential quantum data attack on classical cryptography. This new cryptography combines classical cryptography with post-quantum cryptography, known as the “hybrid” approach.
However, this approach can cause compatibility issues with some TLS (“Transport Layer Security”) servers, which can lead to broken TLS connections.
The feature causing the problem should be turned on by default in Chrome 124, which was recently released.
The problem occurs because some TLS servers may not support the new post-quantum key exchange algorithm, especially the “New Hope” algorithm. This algorithm uses a larger key size (2048-bit) than traditional key exchange algorithms, which can cause problems with servers that have key size limitations.
In addition, some TLS servers may not support extensions required for the hybrid approach to work. As a result, Chrome users may experience failed connections or erratic or slow performance when visiting websites that are not compatible with the new cryptography.
The problem is significant, as it can affect the security and reliability of network connections. If a site’s TLS server is not compatible with the new post-quantum cryptography, users may not be able to access the site or experience errors.
