26. Sep 2024

World Quantum Readiness Day

The National Institute of Standards and Technology (NIST) published the first final standards for post-quantum cryptography (PQC) in August 2024. These new standards include three cryptographic algorithms specifically designed to defend against attacks by quantum computers. They are intended to ensure the protection of digital signatures and general encryption and are the result of an eight-year selection and evaluation process.

Quantum computing

With these standards, NIST is responding to the increasing advances in quantum computing, which could be able to break current encryption methods in the next five to ten years. The new algorithms are based on mathematical problems that are difficult to solve for both classical and quantum computers, enabling future-proof encryption.

NIST recommends that organizations start implementing these algorithms now, as the transition to a quantum-safe infrastructure will take time. It also warns that hackers may already be stealing encrypted data today in order to decrypt it later using quantum computers (“steal now, decrypt later”)

 

Recommendations

In April 2024, the European Commission published a recommendation on the transition to PQC to help EU member states and companies prepare for the threats posed by quantum computing. Companies should take the following steps now:

  1. Assess current systems: Organizations need to evaluate their existing cryptographic systems and protocols to determine which areas are most vulnerable to future quantum computing attacks.
  2. Migration planning: It is recommended to develop a clear roadmap for the migration to quantum-resistant algorithms. This includes both technical adjustments and training of staff to be able to handle the new technologies.
  3. Collaboration and standardization: Companies should work closely with European and international bodies to ensure that the post-quantum cryptography standards introduced are harmonized and interoperable across the EU. This promotes the seamless functionality of systems and services across national borders.
  4. Proactive integration: It is important to proactively integrate the new cryptographic standards into existing systems instead of waiting for quantum computing attacks to become available. This is crucial for the long-term security of the digital infrastructure.

These recommendations are intended to ensure that Europe's digital infrastructure is well prepared to meet the challenges of the quantum computing era.

Further information

News & Events

The basis for long-term success!

19. Aug 2024

Global Threat Report 2024: Current situation

Newest trends in cybercrime

Learn more
06. Aug 2024

Lateral entry as an IT security auditor – a field report

Learn more
06. Aug 2024

TISAX®: Information security in the automotive industry

Learn more
06. Aug 2024

TISAX® deep dive: the three assessment levels

Learn more
06. Aug 2024

TISAX® deep dive: the 12 test objectives (labels)

Learn more
10. Oct 2024

Event:CIS Compliance Summit 2024

Austrian platform for experts, professionals and desicion makers in the security industry. Be part of it - save the date: October 10th, 2024

Learn more
11. Jun 2024

Aspects of climate change included in the standards for management systems

New features and what happens next

Learn more
17. Apr 2024

CIS joins the Austrian Data Centre Association (ADCA)

New cooperation

Learn more
17. Apr 2024

Smart compliance for data centres

NISG and EN 50600

Learn more
28. Mar 2024

ISO 42001 – the new standard for artificial intelligence

World's first standard for AI

Learn more
07. Mar 2024

The future of AI and data ownership

A balancing act between AI, information security and data ownership

Learn more
07. Mar 2024

Are we losing control of our data through artificial intelligence (AI)?

A balancing act between AI, information security and data ownership

Learn more

Show all news Show all events

+43 1 532 98 90
0