September 5, 2024 at 11:17AM
The internet relies on transparency, security, and trust. Encryption, especially RSA, forms the backbone of internet security. However, the advent of quantum computing poses a threat to current encryption, leading to what experts term as “Q Day.” Organizations are preparing for post-quantum encryption, necessitating a shift to larger algorithms and automation for efficient encryption management. DigiCert is actively working on post-quantum solutions to help companies navigate this impending digital transformation.
From the meeting notes, it is evident that the advent of quantum computing poses a significant threat to current encryption methods, as quantum computers can potentially break or weaken certain encryption algorithms. The shift to post-quantum encryption algorithms (PQC) is essential to prepare for the eventuality of quantum computing capabilities surpassing the current encryption standards. The US National Institute of Standards and Technology (NIST) has been working on post-quantum encryption algorithms and has finalized draft standards for the first three candidates, with a fourth slated for standardization this year.
It is crucial for organizations to prioritize quantum encryption readiness and engage in discovery and visibility of their existing encryption infrastructure. Planning for the implementation of post-quantum algorithms will require a meticulous approach, ensuring that automation, policy management, and resource allocation are effectively in place. DigiCert has been collaborating with NIST on the development of new algorithms and offers a Trust Lifecycle Manager platform for automation, discovery, updating, and policy management. They also have the DigiCert ONE platform, which is post-quantum ready, enabling users to begin testing post-quantum technology.
The transition to post-quantum encryption demands proactive steps, including building inventories of new applications and deployed landscapes, upgrading existing systems, and continuous discovery of components. Device manufacturers also need to consider the impact of quantum computing on embedded or IoT devices, and ensure that proper security measures are in place.
To raise awareness and provide insights into quantum readiness, DigiCert is promoting Quantum Readiness Day on September 26, coinciding with the expected finalization of new algorithms by NIST. This global event aims to bring together experts to discuss breaking encryption and implementing post-quantum algorithms, thereby aiding organizations in staying ahead of the quantum computing challenge.
In summary, the meeting notes emphasize the urgency for organizations to prepare for the impact of quantum computing on encryption and to transition towards post-quantum encryption algorithms for enhanced security and trust in the digital landscape.