Quantum computers may soon be able to crack encryption methods in use today, so plans are already under way to replace them with new, secure algorithms. Now it seems the US National Security Agency may be undermining that process
TL;DR: he thinks NIST either (through incompetence or NSA pressure) misrepresented NTRU vs. KYBER, and that KYBER-512 might be weaker than claimed so use KYBER-768.
Just go read the original source, djb’s blog post about it.
TL;DR: he thinks NIST either (through incompetence or NSA pressure) misrepresented NTRU vs. KYBER, and that KYBER-512 might be weaker than claimed so use KYBER-768.