https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64119#M6466 <P>It's fascinating with the parallels being drawn to Y2K*. At least in that situation, we had a firm deadline, but with "Q Day," it's a more drawn-out and vague schedule. That reality is going to challenge the transition to quantum safe cryptography.&nbsp;</P><P>&nbsp;</P><P>*Y2K required the updating of software to accommodate 4-digit years (i.e. 1999) rather than just two (i.e. 99) before the possibility a massive systems crash on Jan. 1, 2000. As a colleague of mine pointed out at the time, calling the situation "Y2K" kind of proved that the lesson didn't really sink in.</P> Thu, 02 Nov 2023 12:51:43 GMT JoePete 2023-11-02T12:51:43Z https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64110#M6464 <P>Hi All</P><P>&nbsp;</P><P>Given the recent postings on Quantum Computing and Quantum Safe, I found these reports, which I think many will find useful.&nbsp;&nbsp; It comes from the UK Finance Organisation:</P><P>&nbsp;</P><P><A href="https://www.ukfinance.org.uk/policy-and-guidance/reports-and-publications/identifying-and-minimising-risks-posed-quantum" target="_blank" rel="noopener">https://www.ukfinance.org.uk/policy-and-guidance/reports-and-publications/identifying-and-minimising-risks-posed-quantum</A></P><P>&nbsp;</P><P>Prepare now people.&nbsp;&nbsp; It is an opportunity.</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 02 Nov 2023 02:45:29 GMT https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64110#M6464 Caute_cautim 2023-11-02T02:45:29Z https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64119#M6466 <P>It's fascinating with the parallels being drawn to Y2K*. At least in that situation, we had a firm deadline, but with "Q Day," it's a more drawn-out and vague schedule. That reality is going to challenge the transition to quantum safe cryptography.&nbsp;</P><P>&nbsp;</P><P>*Y2K required the updating of software to accommodate 4-digit years (i.e. 1999) rather than just two (i.e. 99) before the possibility a massive systems crash on Jan. 1, 2000. As a colleague of mine pointed out at the time, calling the situation "Y2K" kind of proved that the lesson didn't really sink in.</P> Thu, 02 Nov 2023 12:51:43 GMT https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64119#M6466 JoePete 2023-11-02T12:51:43Z https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64124#M6467 Remember to keep OpenSSL up to the latest… Thu, 02 Nov 2023 14:45:03 GMT https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64124#M6467 Early_Adopter 2023-11-02T14:45:03Z https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64127#M6468 <P>So, what do y'all think is the timeline to see cryptographically relevant quantum computers (or CRQCs) in the hands of bad actors?&nbsp; I'm assuming that companies like ColdQuanta and Pasqal (which were listed in the PDF) will probably use a cloud model (QCaaS, perhaps?) and let people go hog wild like ChatGPT did.</P> Thu, 02 Nov 2023 14:57:02 GMT https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64127#M6468 ericgeater 2023-11-02T14:57:02Z https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64128#M6469 <a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/136236425">@ericgeater</a> I think it’s hard to say, but it certainly possible that one or more state actors have capability(we know widespread use of malware implants obviate the need for quantum cryptanalysis anyway).<BR /><BR />Distributed compute is good - but it’s always possible we get new types of computer. Better Q-Bits or other novel approaches.<BR /><BR />Let’s face it, threat wise you build a box that has something “as to God” about it - is the best, riskiest most dangerous/useful application to break confidentiality in mass market communications? If someone with bad intentions builds a real useful general quantum machine we might swiftly find other things to worry about… <span class="lia-unicode-emoji" title=":face_with_tongue:">😛</span><BR /><BR /><BR /> Thu, 02 Nov 2023 15:49:50 GMT https://community.isc2.org/t5/Industry-News/Identifying-and-minimising-the-risks-posed-by-quantum-technology/m-p/64128#M6469 Early_Adopter 2023-11-02T15:49:50Z