As quantum computing technology gradually moves from theory to reality, its powerful computational capabilities pose a huge threat to traditional encryption algorithms. As early as 2016, the National Institute of Standards and Technology (NIST) called on cryptographers around the world to develop new encryption standards to deal with the security risks that quantum computing may bring. Traditional encryption algorithms such as RSA, which are based on problems such as the decomposition of large numbers, have become untenable in the face of quantum computers.
After years of review and selection, NIST this week finalized three cryptographic algorithms to address the threat of quantum computing, marking the birth of the world's first post-quantum secure encryption standards. From an initial 69 submissions, NIST selected ML-KEM, ML-DSA, and SLH-DSA, three new standards that are expected to become cornerstones of NIST's quantum security strategy.
ML-KEM: A modular lattice-based key encapsulation mechanism that is fast and suitable for fast cryptographic operations such as secure access to websites.
ML-DSA: A standard for digital signatures that ensures the integrity and authenticity of files or software in transit.
SLH-DSA: Also a standard for digital signatures, which is more secure but requires larger signatures or longer signature generation times.
In addition, the Falcon algorithm has passed the initial review but has not yet been selected as one of the first standards. nIST has indicated that it will continue to evaluate other algorithms and plans to announce approximately 15 algorithms that will move on to the next round of testing and analysis in the coming months.
The three algorithms that became the first standards are based on lattice cryptography, a mathematical mechanism that is very different from traditional cryptography. The new algorithms are designed for asymmetric encryption, with different keys used to encode and decode messages. Lattice cryptography utilizes complex mathematical problems such as the “knapsack problem,” which can be challenging for both traditional and quantum computers.
NIST has announced not only new encryption algorithms, but also implementation details. mathematician Dustin Moody, head of NIST's quantum cryptography standardization project, says companies should start using the first three post-quantum encryption standards immediately to address the risk of potential quantum computing attacks. These three algorithms will be the primary quantum security standards, with the others as alternatives.
However, organizations need to be aware that quantum-secure encryption is more complex than previous encryption evolutions, the algorithms are very different from traditional encryption, there are a variety of different algorithms for different use cases, and the software supply chain is more complex than ever. In short, as algorithms are updated and iterated, organizations need to remain flexible in order to quickly adapt to new, more effective quantum cryptographic security standards.
Disclaimer: Mention of any brand or trademark is for identification only and does not imply partnership or endorsement
