Turn on suggestions

Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Showing results for

Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Showing results for

- (ISC)² Community
- :
- Discussions
- :
- Tech Talk
- :
- Re: PKI and Quantum Computing

- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

03-13-2019
07:57 AM

03-13-2019
07:57 AM

The thought of Quantum computing advances and Quantum computers being freely available will make our current cryptographic systems redundant. PKI will expire soon. Are there new algorithms being developed and also what is the approach. Is the NSA doing something about this? Is it something on your Organisation's radar today ?

Solved! Go to Solution.

Labels

1 Solution

Accepted Solutions

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

03-13-2019
02:48 PM

03-13-2019
02:48 PM

> Tiger (Viewer) posted a new topic in Tech Talk on 03-13-2019 07:57 AM in the

> The thought of Quantum computing advances and Quantum computers being freely

> available will make our current cryptographic systems redundant.

[Sigh.]

I've been studying the security implications of quantum computing for more than a dozen years, now. We are not quite at quantumpocalypse yet.

> PKI will expire

> soon.

First, it's only asymmetric crypto that is under any threat. In fact, the Shor algorithm only works against RSA, so DH and ECC are still reasonably safe. In fact, even if all those *are* attackable (which is probably likely, in the long term) we can still go back to symmetric and Kerberos.

Second, it's taking a while to get full-scale quantum computers online. The largest quantum processor is only around 200 qubits, and it's not a full quantum computer so it doesn't run the Shor algorithm. The largest full-scale quantum computer is currently only about 50 qubits. We are going to need a full-scale machine of around 2,000 qubits to seriously attack current asymmetric systems. I'd estimate that is at least 5 years away. And, even then, you could make asymmetric keys bigger. (Meaning you'd need larger quantum computers.)

Third, please don't confuse the existing "quantum cryptography" with using quantum computers to crack crypto. Quantum cryptography isn't crypto at all: it's just key exchange.

https://www.welivesecurity.com/2014/01/24/rob-slade-the-truth-about-quantum-

cryptography-and-what-it-means-for-privacy/

> Are there new algorithms being developed and also what is the approach.

Yes, new algorithms are being researched and developed all the time, and a particular field of interest right now is quantum-proof crypto. The approach is to learn about cryptography. Seriously.

> Is the NSA doing something about this?

Yes.

> Is it something on your Organisation's

> radar today ?

Actually, quantum computing will have much more serious effects on a number of areas of security besides crypto, and it might not even be the most important ...

http://itsecurity.co.uk/2016/09/security-implications-quantum-computing/

====================== (quote inserted randomly by Pegasus Mailer)

rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org

Three things in human life are important. The first is to be

kind. The second is to be kind. And the third is to be kind.

- Henry James

victoria.tc.ca/techrev/rms.htm http://twitter.com/rslade

http://blogs.securiteam.com/index.php/archives/author/p1/

https://is.gd/RotlWB

............

This message may or may not be governed by the terms of

http://www.noticebored.com/html/cisspforumfaq.html#Friday or

https://blogs.securiteam.com/index.php/archives/1468

9 Replies

Highlighted
##

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

03-13-2019
10:22 AM

03-13-2019
10:22 AM

Re: PKI and Quantum Computing

A lot of people still dispel the myth of quantum computing, but the threat to "traditional" cryptographic algorithms is real. Even Bruce Schneier agrees. NSA has issued interim guidance (basically, use longer keys) to guide organizations prior to transitioning to quantum resistant algorithms. Notably, NIST is currently working with cryptographers on Post-Quantum Standardization. here's a link to the project: https://csrc.nist.gov/Projects/Post-Quantum-Cryptography/Post-Quantum-Cryptography-Standardization

Also, look for Quantum-Cloud-Computing as-a-service to take off. Today, you can get time on IBM Q, D-Wave, Forest, and even with Microsoft Azure integration. Hello AWS where are you in this space?

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

03-13-2019
02:48 PM

03-13-2019
02:48 PM

> Tiger (Viewer) posted a new topic in Tech Talk on 03-13-2019 07:57 AM in the

> The thought of Quantum computing advances and Quantum computers being freely

> available will make our current cryptographic systems redundant.

[Sigh.]

I've been studying the security implications of quantum computing for more than a dozen years, now. We are not quite at quantumpocalypse yet.

> PKI will expire

> soon.

First, it's only asymmetric crypto that is under any threat. In fact, the Shor algorithm only works against RSA, so DH and ECC are still reasonably safe. In fact, even if all those *are* attackable (which is probably likely, in the long term) we can still go back to symmetric and Kerberos.

Second, it's taking a while to get full-scale quantum computers online. The largest quantum processor is only around 200 qubits, and it's not a full quantum computer so it doesn't run the Shor algorithm. The largest full-scale quantum computer is currently only about 50 qubits. We are going to need a full-scale machine of around 2,000 qubits to seriously attack current asymmetric systems. I'd estimate that is at least 5 years away. And, even then, you could make asymmetric keys bigger. (Meaning you'd need larger quantum computers.)

Third, please don't confuse the existing "quantum cryptography" with using quantum computers to crack crypto. Quantum cryptography isn't crypto at all: it's just key exchange.

https://www.welivesecurity.com/2014/01/24/rob-slade-the-truth-about-quantum-

cryptography-and-what-it-means-for-privacy/

> Are there new algorithms being developed and also what is the approach.

Yes, new algorithms are being researched and developed all the time, and a particular field of interest right now is quantum-proof crypto. The approach is to learn about cryptography. Seriously.

> Is the NSA doing something about this?

Yes.

> Is it something on your Organisation's

> radar today ?

Actually, quantum computing will have much more serious effects on a number of areas of security besides crypto, and it might not even be the most important ...

http://itsecurity.co.uk/2016/09/security-implications-quantum-computing/

====================== (quote inserted randomly by Pegasus Mailer)

rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org

Three things in human life are important. The first is to be

kind. The second is to be kind. And the third is to be kind.

- Henry James

victoria.tc.ca/techrev/rms.htm http://twitter.com/rslade

http://blogs.securiteam.com/index.php/archives/author/p1/

https://is.gd/RotlWB

............

This message may or may not be governed by the terms of

http://www.noticebored.com/html/cisspforumfaq.html#Friday or

https://blogs.securiteam.com/index.php/archives/1468

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

03-13-2019
04:43 PM

03-13-2019
04:43 PM

Re: PKI and Quantum Computing

Good points @rslade. Progress is being made on the hardware and we need more qubits to reduce the error rate. We also need to get more Comp Sci students pairing their degrees with Electrical Engineering and Physics so that they understand the technology that they are programming - think STEM but on steroids. Awesome programmers in any of the quantum languages (e.g. QCL, Q#, LIQUi|> is going to be essential because someone is going to have to program Shor's discovery and Grover's algorithm. We need people that understand the the emerging software architecture for quantum. Here's an example https://www.dwavesys.com/software

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

03-13-2019
09:00 PM

03-13-2019
09:00 PM

Re: PKI and Quantum Computing

> AppDefects (Newcomer I) mentioned you in a post! Join the conversation below:

> We also need to get more Comp Sci

> students pairing their degrees with Electrical Engineering and Physics so

> that they understand the technology that they are programming

There is that ...

> Awesome programmers in any of the quantum languages (e.g.

> QCL, Q#,Â LIQUi|> is going to be essential because someone is going to have

> to program Shor's discovery and Grover's algorithm.

Yup. It's going to be very different even from the concepts that current

programmers have.

> We need people that

> understand the the emerging software architecture for quantum.

Indeed.

> Here's an

> example https://www.dwavesys.com/software

Just a handful of miles from here :-)

====================== (quote inserted randomly by Pegasus Mailer)

rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org

I am patient with stupidity but not with those who are proud of

it. - Edith Sitwell

victoria.tc.ca/techrev/rms.htm http://twitter.com/rslade

http://blogs.securiteam.com/index.php/archives/author/p1/

https://is.gd/RotlWB

............

This message may or may not be governed by the terms of

http://www.noticebored.com/html/cisspforumfaq.html#Friday or

https://blogs.securiteam.com/index.php/archives/1468

> We also need to get more Comp Sci

> students pairing their degrees with Electrical Engineering and Physics so

> that they understand the technology that they are programming

There is that ...

> Awesome programmers in any of the quantum languages (e.g.

> QCL, Q#,Â LIQUi|> is going to be essential because someone is going to have

> to program Shor's discovery and Grover's algorithm.

Yup. It's going to be very different even from the concepts that current

programmers have.

> We need people that

> understand the the emerging software architecture for quantum.

Indeed.

> Here's an

> example https://www.dwavesys.com/software

Just a handful of miles from here :-)

====================== (quote inserted randomly by Pegasus Mailer)

rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org

I am patient with stupidity but not with those who are proud of

it. - Edith Sitwell

victoria.tc.ca/techrev/rms.htm http://twitter.com/rslade

http://blogs.securiteam.com/index.php/archives/author/p1/

https://is.gd/RotlWB

............

This message may or may not be governed by the terms of

http://www.noticebored.com/html/cisspforumfaq.html#Friday or

https://blogs.securiteam.com/index.php/archives/1468

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

03-14-2019
11:32 AM

03-14-2019
11:32 AM

Re: PKI and Quantum Computing

@AppDefects wrote:

Also, look for Quantum-Cloud-Computing as-a-service to take off. Today, you can get time on IBM Q, D-Wave, Forest, and even with Microsoft Azure integration.

And, apparently, Google ...

............

This message may or may not be governed by the terms of

http://www.noticebored.com/html/cisspforumfaq.html#Friday or

https://blogs.securiteam.com/index.php/archives/1468

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

03-17-2019
01:51 AM

03-17-2019
01:51 AM

Re: PKI and Quantum Computing

I suggest we should look beyond Quantum Cryptography, to Post Quantum Cryptography and beyond:

https://www.research.ibm.com/5-in-5/lattice-cryptography/

Things are moving so fast, we need to deal with the speed of light developments going on in order to combat the ongoing onslaught, which bound to keep a whole bunch of us safely employed for many a year - well beyond are expected retirement ages.

"Lattice-based cryptography isn’t only for thwarting future quantum computers. It is also the basis of another encryption technology called Fully Homomorphic Encryption (FHE). FHE could make it possible to perform calculations on a file without ever seeing sensitive data or exposing it to hackers."

Quantum Computing will enable us to fully enable FHE - it is a stepping stone.

There is huge sums available for research purposes in this field.

Regards

Caute_cautim

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

03-21-2019
02:25 PM

03-21-2019
02:25 PM

Re: PKI and Quantum Computing

@Caute_cautim wrote:Quantum Computing will enable us to fully enable FHE - it is a stepping stone.

Hopefully a day will come when we can all realize Craig Gentry's work on FHE using ideas lattices...

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

05-01-2019
04:45 AM

05-01-2019
04:45 AM

Re: PKI and Quantum Computing

I'd like to amend to that, the NIST Quantum crytpo competition is currently in its second round: https://csrc.nist.gov/Projects/Post-Quantum-Cryptography

Any other questions around the topic, alike how to deal with it in a professional environment, feel free to contact me. (Not for setting up quantum safe PKI's though)

- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content

12-13-2019
02:14 PM

12-13-2019
02:14 PM

Re: PKI and Quantum Computing

Both an amusing take on the controversy and a resource for ongoing "news" is the "Quantum Bullshirt Detector" Twitter account (which the dreaded "community pr0n filter will not let me post, but which you can search for if you correct the "shirt") ...

............

This message may or may not be governed by the terms of

http://www.noticebored.com/html/cisspforumfaq.html#Friday or

https://blogs.securiteam.com/index.php/archives/1468