CLEVELAND--(BUSINESS WIRE)--Keyfactor, the identity-first security solution for modern enterprises, today announced it has joined the National Cybersecurity Center of Excellence’s (NCCoE’s) Migration to Post-Quantum Cryptography Building Block Consortium. Keyfactor joins companies, including Microsoft, IBM, and AWS, to bring about awareness to the issues involved in migrating to post-quantum algorithms and to develop practices to ease migration from current public-key cryptographic algorithms to replacement algorithms.
Once access to quantum computers becomes established, all public key algorithms and associated protocols will be instantly vulnerable to criminals, competitors, and others. Sudden compromises or outdated algorithms can adversely impact the security of organizations that are unprepared.
Practical quantum computing, when available to cyber adversaries, will break the security of nearly all modern public-key cryptographic systems. With its future-proof PKI solutions stack, Keyfactor helps organizations identify and remediate this risk at scale with crypto-agility, providing security teams with the ability to easily identify and replace vulnerable keys and digital certificates across their organization without disrupting business-critical applications.
“Preparation for quantum-resistant security is not something that can be left for later. When quantum computing becomes available, vulnerabilities will spring up quickly. There are already hostile hackers and groups executing a “steal now, decrypt later” approach, utilizing exfiltration attacks to gather data today that could one day be valuable,” said Ted Shorter, Chief Technology Officer, Keyfactor. “It’s important for organizations to understand this very real – and inevitable – risk. It’s our hope that as a member of the NCCoE’s Migration to Post-Quantum Cryptography Building Block Consortium, we can bring quantum computing planning to the forefront of every security leader’s agenda.”
The initial scope of the NCCoE Migration to Post Quantum Cryptography project is to engage the industry to demonstrate the use of automated discovery tools to identify instances of quantum-vulnerable public-key algorithms that are widely deployed and to manage associated risks. Other goals include the development and improvement of a migration strategy, interoperability and performance of implementations, and outreach to standard developing organizations and industry sectors.
“Public-key cryptography is widely used to protect today’s digital information,” said William Newhouse, Security Engineer, NIST National Cybersecurity Center of Excellence. “With the advent of quantum computing, and its potential to compromise many of the current cryptographic algorithms, it is critical that organizations begin to plan for many of the technological and operational challenges that migration to post-quantum cryptography will present. This project aims to help organizations in that effort.”
To learn more about the NCCoE Migration to Post Quantum Cryptography project, visit https://www.nccoe.nist.gov/crypto-agility-considerations-migrating-post-quantum-cryptographic-algorithms.
To learn more about how Keyfactor helps organizations prepare for post-quantum cryptography, visit https://www.keyfactor.com/post-quantum-cryptography-lab/.
About the National Cybersecurity Center of Excellence
As part of NIST, the NCCoE is a collaborative hub where industry organizations, government agencies, and academic institutions work together to address businesses’ most pressing cybersecurity issues. This public-private partnership enables collaboration in the creation of practical cybersecurity solutions for specific industries, as well as for broad, cross-sector technology challenges. Through consortia under CRADAs, including technology partners, from Fortune 50 market leaders to smaller companies specializing in information technology and operational technology security, the NCCoE applies standards and best practices to develop modular, and easily adaptable example cybersecurity solutions by using commercially available technologies. The NCCoE documents these example solutions in the NIST Special Publication 1800 series, which maps capabilities to the NIST Cybersecurity Framework and details the steps needed for another entity to re-create the example solution. The NCCoE was established in 2012 by NIST in partnership with the State of Maryland and Montgomery County, Maryland. Information is available at https://www.nccoe.nist.gov.
Keyfactor brings digital trust to the hyper-connected world with identity-first security for every machine and human. By simplifying PKI, automating certificate lifecycle management, and securing every device, workload, and thing, Keyfactor helps organizations move fast to establish digital trust at scale — and then maintain it. In a zero-trust world, every machine needs an identity and every identity must be managed. For more, visit keyfactor.com or follow @keyfactor.