Is any of these algorithms somewhat battle tested? Otherwise there is the risk of adopting an insecure algorithm. So I guess there is some risk both ways.
They’ve been beaten on enough that industry is moving forward. The advantage of knowing and being able to prove that the algorithms are insecure would be incalcuable, so groups who want to be able to break into systems aren’t going to volunteer the information. It’s to the benefit of everyone else that the algorithms be secure. The third section of that paper I linked does a pretty good job explaining the why and why now.
tl;dr: Smart people have dug into it, and we know what we’re going to know for now.
Is any of these algorithms somewhat battle tested? Otherwise there is the risk of adopting an insecure algorithm. So I guess there is some risk both ways.
They’ve been beaten on enough that industry is moving forward. The advantage of knowing and being able to prove that the algorithms are insecure would be incalcuable, so groups who want to be able to break into systems aren’t going to volunteer the information. It’s to the benefit of everyone else that the algorithms be secure. The third section of that paper I linked does a pretty good job explaining the why and why now.
tl;dr: Smart people have dug into it, and we know what we’re going to know for now.