Quantum-Safe Encryption Comes Closer

Uploaded on 2024-09-11 in TECHNOLOGY-Key Areas-Quantum Computing, NEWS-Cybersecurity News, FREE TO VIEW

As innovation has progressed from the Internet, Wi-Fi, smartphones, and the Internet of Things, there have been significant security concerns with each technological step. Currently, most security systems in existing IT environments rely on public-key cryptography, which is used almost everywhere from messaging to transactions to securing data at rest.

These cryptographic systems are based on mathematical problems that are difficult and time- consuming for classical computers, but will be much easier and quicker for quantum computers to solve. Indeed, the race to secure our digital world has never been more urgent and the potential of  Quantum computing is  fast becoming reality. 

Quantum computers use properties of quantum mechanics to compute in a fundamentally different way from today's digital, 'classical', computers. They are, theoretically, capable of performing certain computations that would not be feasible for classical computers. 

While their potential to revolutionise fields like healthcare and financial services  is immense, so too is their potential to overturn digital security.  

The encryption that protects everything from our financial transactions to state secrets is at risk of being rendered obsolete by quantum computing. Quantum computers have the potential to solve certain complex mathematical problems millions of times faster than today’s classical computers. This capability, while groundbreaking, poses a significant threat to the encryption algorithms that currently secure the Internet. 

Public-key cryptography, which underpins the security of online banking, email, and secure communications, relies on the difficulty of factoring large numbers something that quantum computing can fix in minutes. Experts have warned that adversaries might already be harvesting encrypted data, biding their time until quantum computers are powerful enough to decrypt it. This Store Now, Decrypt Later” (SNDL)  strategy could lead to catastrophic breaches of sensitive information.

In response, the National Institute of Standards and Technology (NIST) has taken crucial steps to safeguard the future. 

Recognising the gravity of the threat, NIST has spearheaded an initiative to develop new cryptographic algorithms that can withstand the power of quantum computers. After years of rigorous testing and evaluation, NIST has recently published three new algorithms designed to protect against quantum attacks. These algorithms represent the best hope we have for securing our digital future, and their adoption across industries is imperative.

But transitioning to quantum-safe encryption is no small task. The process of integrating these new algorithms into existing systems will take years, if not decades. Companies across sectors, from banking to telecommunications, must begin now to ensure their products and services are equipped to resist quantum threats. 

The importance of quantum-safe encryption extends far beyond protecting individual companies or even entire industries. At its core, this is a matter of national security. 

The US faces sophisticated cyber threats from adversaries like China and Russia, both of which are investing heavily in quantum computing technology. If these nations develop quantum capabilities before the US has transitioned to quantum-safe encryption, the consequences could be severe.

  • Communications that are currently secure could be exposed, revealing sensitive information about troop movements, intelligence operations, and strategic plans. 
  • The ability of an adversary to decrypt classified information in real time would fundamentally alter the balance of power, eroding the US’s strategic advantage and putting lives at risk.

These strategic threats will serve to accelerate the adoption of quantum-safe encryption standards across all sectors critical to national security, not only government agencies but also private companies that handle sensitive data, such as defence contractors and financial institutions. This includes providing clear guidance and support to industries that may struggle with the technical and financial challenges of such a transition.

Given the potentially catastrophic consequences of a quantum cyberattack, the cost of these measures would be a small price to pay for enhanced national security.  As quantum computing evolves, so too must our ability to defend against and, if necessary, retaliate against quantum-enabled cyberattacks. This includes strengthening encryption methods and developing tools to detect and neutralise quantum based threats before they can do harm.

The actions taken by NIST to develop quantum-safe encryption standards are a critical first step. For the US the race to achieve quantum security is imperative to safeguard its national security and digital infrastructure.

NIST   |   NCSC   |    Microsoft   |    WEF   |   Oodaloop  |    Vodafone   |    Quanta Magazine

Image: planetvolumes

You Might Also Read: 

Standards: The Key To Building A Sustainable Quantum-Safe Future:

If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« The Obstacles That Security Teams Face In Vulnerability Management
NIS2 - Countdown To Compliance »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Digital Shadows

Digital Shadows

Digital Shadows is a cyber threat intelligence company that helps clients discover sensitive data exposed through social media, cloud services and mobile devices

NATO Communications and Information Agency (NCIA)

NATO Communications and Information Agency (NCIA)

The NCIA Cyber Security Service Line is responsible for planning and executing all life cycle management activities for cyber security.

PCI Compliance Guide

PCI Compliance Guide

The PCI Compliance Guide is one of the leading educational websites available focused exclusively on PCI compliance.

Canadian Security Intelligence Service (CSIS)

Canadian Security Intelligence Service (CSIS)

CSIS collects and analyzes threat-related information concerning the security of Canada in areas including terrorism, espionage, WMD, cybersecurity and critical infrastructure protection.

Sliced Tech

Sliced Tech

Sliced Tech provides enterprise grade managed Cloud services, including Security-as-a-Services, aimed at meeting the needs of commercial and government clients from within Australia.

Compnet

Compnet

Compnet is a service company that assists customers in integrating complete ICT systems including network infrastructure and security solutions.

H-ON Consulting

H-ON Consulting

H-ON Consulting develops and applies robust cyber security procedures enabling control systems to be secure.

Cybersecurity Collaboration Forum

Cybersecurity Collaboration Forum

The mission of the Cybersecurity Collaboration Forum is to foster information security communication and idea sharing across the C-Suite, enabling leaders to better protect their enterprises.

Open Raven

Open Raven

Open Raven is the cloud native data security platform that prevents breaches driven by modern speed and sprawl. Restore full visibility and regain control within minutes, without agents.

Patriot Cyber Defense

Patriot Cyber Defense

Patriot Cyber Defense is a Cyber Security and Management Consulting professional services firm.

Porto Research, Technology & Innovation Center (PORTIC)

Porto Research, Technology & Innovation Center (PORTIC)

PORTIC brings together several research centers and groups from P.PORTO in a single space, forming a superstructure dedicated to research, technology transfer, innovation and entrepreneurship.

CoreStack

CoreStack

CoreStack helps enterprises overcome cloud challenges such as ever growing security risks, stringent regulatory compliance needs and operational complexities.

ASRC Federal

ASRC Federal

ASRC Federal’s mission is to help federal civilian, intelligence and defense agencies achieve successful outcomes and elevate their mission performance.

BetterWorld Technology

BetterWorld Technology

BetterWorld Technology provides cloud solutions, managed services, SaaS, cybersecurity and virtual CIO, all customized to meet your needs.

ARGOS Cloud Security

ARGOS Cloud Security

ARGOS aims to simplify and strengthen cloud security, by creating a visual map of security vulnerabilities, to your priceless information stored in any cloud provider environment.

Assurestor

Assurestor

Assurestor's singular focus is delivering leading cloud-based backup and disaster recovery designed to increase levels of IT resilience.