Quantum-Safe Encryption Comes Closer

Uploaded on 2024-09-11 in TECHNOLOGY-Key Areas-Quantum Computing, NEWS-Cybersecurity News, FREE TO VIEW

As innovation has progressed from the Internet, Wi-Fi, smartphones, and the Internet of Things, there have been significant security concerns with each technological step. Currently, most security systems in existing IT environments rely on public-key cryptography, which is used almost everywhere from messaging to transactions to securing data at rest.

These cryptographic systems are based on mathematical problems that are difficult and time- consuming for classical computers, but will be much easier and quicker for quantum computers to solve. Indeed, the race to secure our digital world has never been more urgent and the potential of  Quantum computing is  fast becoming reality. 

Quantum computers use properties of quantum mechanics to compute in a fundamentally different way from today's digital, 'classical', computers. They are, theoretically, capable of performing certain computations that would not be feasible for classical computers. 

While their potential to revolutionise fields like healthcare and financial services  is immense, so too is their potential to overturn digital security.  

The encryption that protects everything from our financial transactions to state secrets is at risk of being rendered obsolete by quantum computing. Quantum computers have the potential to solve certain complex mathematical problems millions of times faster than today’s classical computers. This capability, while groundbreaking, poses a significant threat to the encryption algorithms that currently secure the Internet. 

Public-key cryptography, which underpins the security of online banking, email, and secure communications, relies on the difficulty of factoring large numbers something that quantum computing can fix in minutes. Experts have warned that adversaries might already be harvesting encrypted data, biding their time until quantum computers are powerful enough to decrypt it. This Store Now, Decrypt Later” (SNDL)  strategy could lead to catastrophic breaches of sensitive information.

In response, the National Institute of Standards and Technology (NIST) has taken crucial steps to safeguard the future. 

Recognising the gravity of the threat, NIST has spearheaded an initiative to develop new cryptographic algorithms that can withstand the power of quantum computers. After years of rigorous testing and evaluation, NIST has recently published three new algorithms designed to protect against quantum attacks. These algorithms represent the best hope we have for securing our digital future, and their adoption across industries is imperative.

But transitioning to quantum-safe encryption is no small task. The process of integrating these new algorithms into existing systems will take years, if not decades. Companies across sectors, from banking to telecommunications, must begin now to ensure their products and services are equipped to resist quantum threats. 

The importance of quantum-safe encryption extends far beyond protecting individual companies or even entire industries. At its core, this is a matter of national security. 

The US faces sophisticated cyber threats from adversaries like China and Russia, both of which are investing heavily in quantum computing technology. If these nations develop quantum capabilities before the US has transitioned to quantum-safe encryption, the consequences could be severe.

  • Communications that are currently secure could be exposed, revealing sensitive information about troop movements, intelligence operations, and strategic plans. 
  • The ability of an adversary to decrypt classified information in real time would fundamentally alter the balance of power, eroding the US’s strategic advantage and putting lives at risk.

These strategic threats will serve to accelerate the adoption of quantum-safe encryption standards across all sectors critical to national security, not only government agencies but also private companies that handle sensitive data, such as defence contractors and financial institutions. This includes providing clear guidance and support to industries that may struggle with the technical and financial challenges of such a transition.

Given the potentially catastrophic consequences of a quantum cyberattack, the cost of these measures would be a small price to pay for enhanced national security.  As quantum computing evolves, so too must our ability to defend against and, if necessary, retaliate against quantum-enabled cyberattacks. This includes strengthening encryption methods and developing tools to detect and neutralise quantum based threats before they can do harm.

The actions taken by NIST to develop quantum-safe encryption standards are a critical first step. For the US the race to achieve quantum security is imperative to safeguard its national security and digital infrastructure.

NIST   |   NCSC   |    Microsoft   |    WEF   |   Oodaloop  |    Vodafone   |    Quanta Magazine

Image: planetvolumes

You Might Also Read: 

Standards: The Key To Building A Sustainable Quantum-Safe Future:

If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« The Obstacles That Security Teams Face In Vulnerability Management
NIS2 - Countdown To Compliance »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Concise Technologies

Concise Technologies

Concise Technologies provide specialist IT and telecoms solutions, support services, managed backup, disaster recovery, cyber security and consultancy to SME businesses across the UK and Europe.

QASymphony

QASymphony

QASymphony software testing and QA tools help companies create better software by improving speed, efficiency and collaboration during the testing lifecycle.

Cyber Security For Critical Manufacturing (ManuSec)

Cyber Security For Critical Manufacturing (ManuSec)

Cyber Security For Critical Manufacturing (Manusec) is a global series of summits focusing on Cyber Security for Critical Manufacturing Sectors.

Seqrite

Seqrite

Seqrite offers a highly advanced range of enterprise and IT security solutions to protect your organization's most critical data.

AVORD

AVORD

AVORD is a cloud-based security testing platform that allows clients to manage security testing requirements in a far more productive and efficient way.

SecurityGate

SecurityGate

SecurityGate.io is the only Integrated Risk Management platform built for OT/ICS cybersecurity.

Neosecure

Neosecure

NeoSecure is a specialist Cybersecurity Solutions and Managed Services provider in Latin America.

ITTAS

ITTAS

ITTAS is a multidisciplinary company specializing in information security and software and hardware protection software.

eSec Forte Technologies

eSec Forte Technologies

eSec Forte Technologies is a CMMI Level-3 ISO 9001-2008, 27001-2013 certified global consulting and implementation company focused on Information Security and Cyber Security.

Information & Communications Technology Association of Jordan (int@j)

Information & Communications Technology Association of Jordan (int@j)

The Information & Communications Technology Association of Jordan is a membership based ICT and IT Enabled Services (ITES) industry advocacy, support and networking association.

Cyber Protection Group (CPG)

Cyber Protection Group (CPG)

Cyber protection Group specialize in Penetration Testing. We work with enterprise level companies as well as small to medium sized businesses.

MTI

MTI

MTI is a solutions and service provider, specialising in data & cyber security, datacentre modernisation, modern workplace, IT managed services and IT transformation services.

Hayes Connor Solicitors

Hayes Connor Solicitors

Hayes Connor Solicitors is a specialist data breach and cybercrime law firm. We act for clients on individual data breaches and also where a group has been compromised as part of a targeted attack.

HashDit

HashDit

HashDit products and services focus on helping build a safe ecosystem for both protocol users and smart contract developers on BNB Chain.

Awareness Software Limited (ASL)

Awareness Software Limited (ASL)

As Hosting Specialists, Awareness Software offer practical and affordable hosting solutions including backup and disaster recovery and a range of cybersecurity services.

Hartman Executive Advisors

Hartman Executive Advisors

Hartman Executive Advisors is an unbiased IT and cyber advisory firm uniquely designed to help mid-market executives maximize their IT investments.