NIST has released its first set of finalized encryption standards designed to withstand the potential threats posed by quantum computers.
As the demand for compute power grows to support traditional high-performance computing, and now AI workloads, quantum computing is getting ever-more attention. However, developments in the market are a double-edged sword. The potential gains in raw compute power can also be applied to crack previously secure encryption algorithms.
As such, the National Institute of Standards and Technology (NIST) has released its first set of finalized encryption standards designed to withstand the potential threats posed by quantum computers. These new post-quantum cryptography (PQC) standards protect a wide range of electronic information, from confidential emails to e-commerce transactions, against future cyberattacks.
See also: Survey Surprise: Quantum Now in Action at Almost One-Third of Sites
A Decade-Long Effort to Address Quantum Computing Threats
The finalized standards result from an eight-year effort by NIST to develop encryption algorithms that can resist attacks from quantum computers, which could break current encryption methods. Quantum computers, which are expected to be capable of such attacks within the next decade, represent a significant threat to digital security and privacy worldwide. The three new standards — ML-KEM, ML-DSA, and SLH-DSA — are built on different mathematical foundations to ensure resilience against both conventional and quantum computers.
These standards include detailed instructions for implementation, making them ready for immediate use by computer system administrators. NIST encourages organizations to integrate these algorithms into their systems as soon as possible to prepare for future quantum threats.
Next Steps and Future Developments
NIST continues to evaluate additional algorithms that could serve as backups to these standards, ensuring robust protection against evolving quantum computing capabilities. This ongoing effort includes a set of algorithms designed for general encryption and another for digital signatures. The results of this evaluation will be announced by the end of 2024.
In the meantime, NIST stresses the importance of adopting the finalized standards to protect against potential attacks. The new standards are expected to be the primary tools for securing digital communications and authenticating identities, reinforcing the nation’s cybersecurity infrastructure.
By providing these new encryption standards, NIST reaffirms its commitment to safeguarding digital information against future threats, ensuring that America remains a global leader in technological innovation and security.
