Forward Secrecy’s use as a layer of security during encrypted sessions may be threatened. Simply, Forward Secrecy permits only the end-points in a secure session to decrypt traffic. The problem is surveillance of encrypted traffic in high-security environments demands the ability to break open and inspect content. Forward Secrecy prevents this action. Now, the issue of post-quantum cryptography enters the picture with the purported ability to crack encryption keys in short order. NIST is handling PQC as an imperative. This report suggests TLS 2.0 may be in the offing, incorporating quantum-resistant algorithms.
