Staying up on emerging technologies, changing public perceptions, and breaking government action makes us better at our jobs.
October 2, 2024
The protections keeping bad actors from breaking into your private communications and databases could be rendered obsolete in a matter of years.
Quantum computers are getting increasingly close to breaking today’s standard cryptography. Dr. Michele Mosca, an expert in quantum computing at the University of Waterloo, estimates a one-in-seven chance that some of the fundamental public-key cryptography tools we rely on today will be broken by 2026, with that chance increasing to 50% by 2031.
But don’t panic—all is not lost.
The National Institute of Standards and Technology (NIST) has been working to create a new standard for encryption that is quantum-proof. It’s one of the most significant developments we’ve seen in this area in some time.
And that’s not for nothing.
The last thing anyone wants is their data stolen or sold. We’ve seen the uproar that comes with social media data breaches, such as Facebook’s leak in April 2021, and it wasn’t the first or last of its kind.
However, even though 533 million Facebook users from 106 countries had their information stolen, it seems this incident is largely forgotten. The wave of fear has subsided. Most of us accept some risk when using the internet and have put the issue out of our minds.
The same cannot be said for the threat of quantum computers. They are not a risk so easily ignored—and not only when private communications are at stake but on a larger scale that affects national security and banking.
“A quantum computer attack could impair nearly 60% of total assets in the banking system due to bank runs and endogenous liquidity traps,” says Arthur Herman for Forbes.
Also according to Herman, such an attack on one of the five largest US financial institutions (by assets) aimed at the Fedwire Funds Service payment system “could trigger a cascading financial failure costing anywhere from $730 billion to $1.95 trillion.”
This threat makes quantum-safe cryptography critical for the future of privacy and security across the entirety of the internet.
Enter: new NIST standards for quantum-proofing encryptions.
These new standards are designed for two essential tasks that encryption is typically applied to: general encryption, used to protect information exchanged across a public network, and digital signatures, used for identity authentication.
The first three finalized standards as of NIST’s 2023 draft release (the fourth draft standard is planned for late 2024) are as follows:
These standards differ from the existing standards due to their new algorithms, layers of security, and diverse mathematical approaches. They are the result of an eight-year effort to get them ready for immediate use in quantum-proof cryptography.
They’ve come a long way since NIST announced the winners of their competition to find quantum-resistant cryptographic algorithms. The new standards were chosen to deliver what is hopefully a reliable level of protection from quantum computers, making for more secure post-quantum-encryption communications.
The differences that make these standards applicable to quantum-safe cryptography include:
In layman’s terms, quantum computers use different math than regular computers, which allows them to trivially break today’s cryptography.
Because quantum computers are great at factoring huge numbers—which is what sits at the heart of today’s encryption—standards such as NIST’s new release are essential for quantum-safe cryptography.
“Quantum computers harness some of the almost-mystical phenomena of quantum mechanics to deliver huge leaps forward in processing power,” says Martin Giles for MIT Technology Review.
While classical computers use bits that can be either 1s or 0s, quantum computers use qubits, which can represent numerous possible states of 1 and 0 simultaneously. This approach is known as superposition, often likened to Schrödinger’s cat in terms of existing in two states at once.
Further, qubits can communicate with—or influence—one another from a distance in a process referred to as entanglement, where they harness a sort of chain-linked thread of qubits to solve complex equations.
With all this in mind, NIST’s new standards for quantum-safe cryptography must be robust both on the algorithmic side and security-wise, with backups for their backups. That is what these standards aim to deliver.
The complex, lattice-based and hash-based algorithms at the core of these new standards are designed to be very difficult for both current computers and future quantum computers to crack. In contrast, the encryption standards currently in use are based on algebra that future quantum computers could solve exponentially faster than current computers.
In other words, these standards use higher-dimensional math instead of large strings of numbers, which adds the needed complexity to thwart quantum codebreaking.
LIKE WHAT YOU’RE READING?
Get more, straight to your inbox.
Many organizations are notorious for being slow to implement cybersecurity changes. Even though there are viable solutions available, the risk remains that they may not get on the ball in time to avoid the dangers of quantum computers.
There is a real and present risk that hackers are stockpiling sensitive data today to decrypt later when the technology matures.
Dustin Moody, a mathematician at NIST, believes there is a real threat of a nation-state adversary like China getting a quantum computer and being able to steal government and business secrets.
“The threat is that they copy down your encrypted data and hold on to it until they have a quantum computer,” he says.
As these hackers hoard and harvest, it’s more essential than ever to stay on top of quantum-proofing standards and advancements in quantum-safe cryptography—to be ready for what’s to come. That goes for individuals, business owners, and national agencies alike.
Developing and commercializing quantum technology isn’t just about better processing or performance. It’s a national security issue that affects our entire society.
That’s why Dynamic Tech Media is committed to serving the quantum industry of the US and our allies. If you’re a quantum innovator who needs help with marketing or communications, get in touch today.
Staying up on emerging technologies, changing public perceptions, and breaking government action makes us better at our jobs.
There’s a big difference between hyperbole and the reality of AI content creation.
Technology is rapidly evolving, but anyone who’s worked in the industry can tell you that buzzwords and big promises rarely live up to the hype.