On trustA leading provider of trusted identity, payments, and data protection solutions, has announced four new solutions aimed at helping organizations prepare for the security challenges and opportunities presented by quantum computers.
While not powerful enough to do so today, advances in quantum computing threaten the integrity of traditional asymmetric encryption algorithms, and have the potential to power brute force attacks that succeed in minutes rather than years. Quantum Post (PQ) cryptography is the development of new cryptographic approaches that can be implemented using today’s computers, but will be impervious to attacks from tomorrow’s quantum ones.
The National Institute of Standards and Technology (NIST) has published a shortlist of safe PQ algorithms that will be resilient to these attacks. While these algorithms are under review from academia and industry, security-conscious organizations need to start working now to be fully prepared for the post-quantum future. This includes due diligence by investigating the adoption of shortlisted algorithms in their cryptographic ecosystem.
To help organizations start preparing for this future now, Entrust is rolling out four new products designed to help organizations assess their cryptographic position and integrate resistant quantum algorithms into their encrypted workflows and services. The new offers are:
Expands Cryptographic Center of Excellence to Support PQ Readiness
Entrust Cryptographic Center of Excellence consultancy portfolio – which provides actionable recommendations to remedy identified risks in crypto systems – is emerging to help prepare organizations to manage PQ challenges. Upcoming updates to Crypto Agility Maturity Assessment will help organizations identify their readiness to manage the introduction of PQ algorithms and provide a roadmap for achieving the required level of crypto agility.
Entrust nShield Post Quantum Cryptography Option Pack
For a customer who wants to prepare for the PQ world and wants to evaluate the use of NIST PQ shortlisting algorithms that run within the representative environment of Entrust nShield Hardware Security Module (HSM), Entrust offers a preview of a new options package that provides software development. a set of cryptographic functions based on NIST PQ shortlisted algorithms that run within the representative environment of the Entrust nShield Hardware Security Module (HSM). This sandbox environment supports a range of PQ cryptographic operations including key generation, encryption, decryption, signing, verification, and key exchange. It enables developers to test PQ algorithms, invoke encryption operations via Java calls and execute code within a secure test environment underpinned by a secure quantum root.
Quantum Java toolkit
Available as a beta release, this pluggable Java toolkit provides a way for organizations to integrate secure quantum algorithms into their digital certificate generation workflows. It is being made available to organizations looking to start building secure applications with PQ cryptography and supports draft composite certification standards and traditional single algorithm certifications. Entrust has developed this toolkit to support the post – quantum development of the National Institute of Standards and Technology (NIST) and is a competitor in a 3 round signing in the NIST competition.
PKIaaS for Quantum Post
In a PQ environment, Public Key Infrastructure (PKI) providers will be required to issue hybrid or composite certificates that combine safe classical and quantum algorithms. By providing a cloud-based PKI as a Service offering, Entrust can provide customers with a composite and pure quantum Certification Authority hierarchy. PQ via PKIaaS is expected to be available to applicants as a beta in April 2022 and will give organizations the ability to test multiple or composite certificates with their application, with the added benefit of Entrust nShield HSMs as their basis and support.
“Post-quantum computing is an inevitable threat to cybersecurity. While it is not clear exactly when the post-quantum threat will occur, it is generally expected to occur within the decade. The transition to quantum-safe algorithms can take several years, so now is the time to prepare for the post-quantum, ”said Anudeep Parhar, Chief Information Officer at Entrust. “Trust is at the forefront of post-quantum cryptography. We are participating members of the Internet Engineering Task Force (IETF), and are also participants in the NIST PQ competition. Through growth initiatives and investment in solutions similar to those announced today, we are helping our customers today prepare for tomorrow. ”
About Entrust
Entrust keeps the world moving safely by enabling trusted identities, payments and data protection. Today more than ever, people demand secure and seamless experiences, whether they are crossing borders, buying, accessing e – government services or logging into corporate networks. Entrust offers a unique range of digital security and reputable release solutions that are at the heart of all of these interactions. With more than 2,500 colleagues, a network of global partners, and customers in more than 150 countries, it’s no surprise that we are trusted by the most entrusted organizations in the world. www.entrust.com
