OpenSSH 10.1 will now warn users when non-post-quantum cryptographic key exchange algorithms are used, encouraging migration to quantum-resistant alternatives. This addresses the 'store now, decrypt later' threat where attackers could record encrypted traffic today and decrypt it later using future quantum computers. The warning is enabled by default but can be disabled via configuration.
Background
Quantum computers pose a future threat to current cryptographic algorithms, particularly key exchange and digital signature schemes used in protocols like SSH. While cryptographically-relevant quantum computers don't exist yet, experts estimate they could arrive within 5-20 years.
- Source
- Lobsters
- Published
- Apr 7, 2026 at 05:44 PM
- Score
- 7.0 / 10