How the NSA may have cracked encryption

Interesting article - it's amazing what can be done with a budget of several $billion

https://freedom-to-tinker.com/blog/haldermanhening...

Or all of us will.

It's the ultimate 'heads or tails?'. Except the winner gets utopia, and the loser gets something very, very different.

There's a nice video here explaining how the mathematics work for Elliptic Curve Diffie Hellman key exchange and cryptography.

The maths is pretty hardcore but it is easy to follow the principles of what is going on and how it works.

I disagree. It's not so much exploiting a weakness in the implementation as it is a salutatory reminder that all modern encryption relies on nothing more than a very large set of potential solutions that must each be individually checked to find the correct one, and therefore we are hoping that the expected effort that needs to be spent to check these solutions is either too large to complete in reasonable time, or at least is large enough to make it not worthwhile. Therefore what was secure 20 years ago (128 bit keys for example, or even 1024 bit in this case) is no longer secure on modern hardware for a suitably motivated and well-funded attacker - and that what is secure now, will not be in 5/10/20 years. And even that is barring any genuine breakthroughs in mathematics, algorithmics, or (more likely) hardware design.

Security isn't a one-time activity; you need to be on top of things all the time to stay ahead of the game.

This.

They haven't broken the asymmetric encryption used during the shared key-exchange mechanism, they've calculated some common shared keys used by broken implementations. Change the way the shared keys are produced and the weakness is reduced.