As part of the recent IoTF event, PQShield’s Alan Grau shared his thoughts on he new PQC standards and what they mean for designers of IoT and connected devices. Here are some key takeaways.
After three selection rounds, the NIST Post-Quantum Cryptography (PQC) Standardization Project recently selected new PQC algorithms to be ratified as new Federal standards for key establishment and digital signatures. It has also been announced that new NSS (Defence) cryptographic suites will be based on NIST PQC standards. In addition, RISC-V has recently ratified new cryptographic extensions.
Secure element, chip and platform engineers should be planning for a migration to PQC with the winning schemes. Similarly, application developers and product engineers should be developing a strategy for crypto agility to enable future migration to PQC that can support all winning schemes and round 4 alternatives. But for many in the industry, a key question remains: where to start?
Whatever implementation timeline you’re facing, it’s clear that the time to start planning is definitely now. Contact the experts at PQShield today, and get on the road to quantum safety quickly and efficiently.
Link to Press Release
After three selection rounds, the NIST Post-Quantum Cryptography (PQC) Standardization Project recently selected new PQC algorithms to be ratified as new Federal standards for key establishment and digital signatures. It has also been announced that new NSS (Defence) cryptographic suites will be based on NIST PQC standards. In addition, RISC-V has recently ratified new cryptographic extensions.
Secure element, chip and platform engineers should be planning for a migration to PQC with the winning schemes. Similarly, application developers and product engineers should be developing a strategy for crypto agility to enable future migration to PQC that can support all winning schemes and round 4 alternatives. But for many in the industry, a key question remains: where to start?
Migration Key Areas
- PQC for Secure Communication
- Updated existing protocols (TLS, IPSec, etc.) with PQC algorithms
- Hybrid solutions allow interoperability during transition period
- PQC for Platform Security
- Platform security (secure boot, secure software/firmware updates) need to adopt PQC algorithms
- PQC for other use cases
- PKI solutions (public & private) must migrate to PQC. Private PKI solutions can migrate today
- Document signing, device identity/authentication, etc. will all need to migrate to PQC
Most At-risk Industries
- Defence & Infrastructure
- Internet of Things
- OEM & Industrial
Whatever implementation timeline you’re facing, it’s clear that the time to start planning is definitely now. Contact the experts at PQShield today, and get on the road to quantum safety quickly and efficiently.
Link to Press Release