Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion
2 weeks ago
2 weeks ago

NSA Post Quantum Cryptography update

Hi All

 

The National Security Agency Post-Quantum Cryptography guidance has been updated to allow ML-DSA (aka CRYSTALS-Dilithium, aka FIPS-PUB 204) for firmware and software signing. This is significant as it means we now have an alternative to XMSS/LMS based code signing. (XMSS/LMS are Quantum-safe but have implementation challenges using Hardware Security Modules (HSMs) to store the state for the signature algorithms.)

Short version: expect to see lots of hardware and software switching to ML-DSA in the next year.

New version of the CNSA 2.0 FAQ .. note the URL is unchanged, but the FAQ document it links is now updated to Apr 2024

 

https://media.defense.gov/2022/Sep/07/2003071836/-1/-1/0/CSI_CNSA_2.0_FAQ_.PDF

 

Regards

 

Caute_Cautim

Preview file
385 KB
Reply
1 Reply
Kyaw_Myo_Oo
Contributor II
2 weeks ago
2 weeks ago

Thanks for sharing, looks interesting @Caute_cautim.

 

 

Kyaw Myo Oo
Manager , CB BANK PCL
CCIE #58769 | PCNSE | CCSE | CISSP | PMP
Reply