https://community.isc2.org/t5/Industry-News/NSA-Post-Quantum-Cryptography-update/m-p/69636#M6862 <P>Hi All</P><P>&nbsp;</P><P><SPAN class=""><SPAN><SPAN class="">The <A href="https://www.linkedin.com/company/national-security-agency/" target="_blank" rel="noopener">National Security Agency</A> Post-Quantum Cryptography guidance has been updated to allow ML-DSA (aka CRYSTALS-Dilithium, aka FIPS-PUB 204) for firmware and software signing. This is significant as it means we now have an alternative to XMSS/LMS based code signing. (XMSS/LMS are Quantum-safe but have implementation challenges using Hardware Security Modules (HSMs) to store the state for the signature algorithms.)<BR /><BR />Short version: expect to see lots of hardware and software switching to ML-DSA in the next year.<BR /><BR />New version of the CNSA 2.0 FAQ .. note the URL is unchanged, but the FAQ document it links is now updated to Apr 2024</SPAN></SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN><SPAN class=""><A href="https://media.defense.gov/2022/Sep/07/2003071836/-1/-1/0/CSI_CNSA_2.0_FAQ_.PDF" target="_blank" rel="noopener">https://media.defense.gov/2022/Sep/07/2003071836/-1/-1/0/CSI_CNSA_2.0_FAQ_.PDF</A></SPAN></SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN><SPAN class="">Regards</SPAN></SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN><SPAN class="">Caute_Cautim</SPAN></SPAN></SPAN></P> Sun, 21 Apr 2024 05:39:15 GMT Caute_cautim 2024-04-21T05:39:15Z https://community.isc2.org/t5/Industry-News/NSA-Post-Quantum-Cryptography-update/m-p/69636#M6862 <P>Hi All</P><P>&nbsp;</P><P><SPAN class=""><SPAN><SPAN class="">The <A href="https://www.linkedin.com/company/national-security-agency/" target="_blank" rel="noopener">National Security Agency</A> Post-Quantum Cryptography guidance has been updated to allow ML-DSA (aka CRYSTALS-Dilithium, aka FIPS-PUB 204) for firmware and software signing. This is significant as it means we now have an alternative to XMSS/LMS based code signing. (XMSS/LMS are Quantum-safe but have implementation challenges using Hardware Security Modules (HSMs) to store the state for the signature algorithms.)<BR /><BR />Short version: expect to see lots of hardware and software switching to ML-DSA in the next year.<BR /><BR />New version of the CNSA 2.0 FAQ .. note the URL is unchanged, but the FAQ document it links is now updated to Apr 2024</SPAN></SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN><SPAN class=""><A href="https://media.defense.gov/2022/Sep/07/2003071836/-1/-1/0/CSI_CNSA_2.0_FAQ_.PDF" target="_blank" rel="noopener">https://media.defense.gov/2022/Sep/07/2003071836/-1/-1/0/CSI_CNSA_2.0_FAQ_.PDF</A></SPAN></SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN><SPAN class="">Regards</SPAN></SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN><SPAN class="">Caute_Cautim</SPAN></SPAN></SPAN></P> Sun, 21 Apr 2024 05:39:15 GMT https://community.isc2.org/t5/Industry-News/NSA-Post-Quantum-Cryptography-update/m-p/69636#M6862 Caute_cautim 2024-04-21T05:39:15Z https://community.isc2.org/t5/Industry-News/NSA-Post-Quantum-Cryptography-update/m-p/69637#M6863 <P>Thanks for sharing, looks interesting&nbsp;<a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/809125741">@Caute_cautim</a>.</P><P>&nbsp;</P><P>&nbsp;</P> Sun, 21 Apr 2024 07:54:43 GMT https://community.isc2.org/t5/Industry-News/NSA-Post-Quantum-Cryptography-update/m-p/69637#M6863 Kyaw_Myo_Oo 2024-04-21T07:54:43Z