Post-quantum cryptography

Dominik Birgelen at oneclick AG Group explores the next step in cyber-security

 

Quantum computing has undergone tremendous developments in recent years revolutionising how global society tackles complex problems across various domains. While the potential for innovation in quantum is unprecedented it also poses a significant threat to existing cyber-security frameworks. 

 

As quantum computers grow more advanced, they are capable of rendering current encryption standards obsolete. To address this, the emergence of post-quantum cryptography (PQC) has become one of the most critical advancements in the field and a key focus area for organisations. With the growing threat of quantum computing, organisations must prioritise the development and implementation of quantum-resistant cryptographic algorithms to safeguard sensitive data.

While AI-driven cyber-security measures and advanced threat detection have dominated the conversation in recent years, the evolving nature of cryptography will be pivotal in defining how organisations protect their digital assets. Businesses that adopt PQC early will be better positioned to secure their operations and mitigate risks in an increasingly interconnected world.

 

Impact of quantum cyber-attacks

Quantum computing poses a serious threat to existing encryption standards and cryptosystems like Rivest-Shamir-Adleman (RSA) and Endpoint Security as a Service (ESS) which are commonly used to secure everything from financial transactions to sensitive data and rely on the complexity of factoring large numbers. Quantum computers however are capable of making this process redundant, exposing these systems to vulnerabilities.

 

For businesses, a quantum cyber-attack can result in the exposure or loss of sensitive customer data, intellectual property and financial information. Cyber-criminals already employ the “Harvest Now, Decrypt Later”, (HNDL) tactic which refers to the theft of sensitive encrypted data for decryption using future quantum computing technology.

 

A successful quantum cyber-attack can result in severe financial losses, regulatory penalties, and reputational damage, eroding customer trust. Businesses must adopt proactive strategies and harness advanced technologies to future-proof their cyber-security infrastructure.

 

PQC: crucial for developing future standards

Quantum computers are growing increasingly closer to breaking current cryptographic methods with Q-day reportedly drawing closer with emerging technological advancements. The imminent threat that quantum computing poses to encryption standards has prompted governments, research institutes and private organisations to invest heavily in the development of quantum-resistant algorithms. According to Statista, the quantum security market was valued at just under £410 million in 2022, with forecasts suggesting that this is likely to rise to over £8 billion by 2030 - with a majority of revenue generated by the post-quantum security cryptography method.

 

These algorithms are undergoing extensive testing and development with the objective of creating standards that will be widely adopted by private and public bodies as well as cyber-security professionals. Several PQC algorithms are already in development with some focusing on lattice-based cryptography, hash-based cryptography and multivariate polynomial encryption. These algorithms are designed to resist quantum-enabled attacks offering businesses robust encryption for their digital assets.

 

A multi-layered cyber-security approach 

As quantum computing starts to become more advanced and mature, it creates significant data risks for businesses. To strengthen their defences and mitigate against the evolving quantum cyber-threat, organisations must consider utilising a multi-layered strategy, harnessing quantum-resistant encryption with key measures like multi-factor authentication, and endpoint encryption which can add additional layers of security and reduce the likelihood of unauthorised access.

 

Advanced solutions like Zero Trust Architecture (ZTA) can also help enhance security infrastructure. ZTA operates on the principle that no entity, whether inside or outside the network, should be trusted by default. Instead, every request is verified before granting entry. By leveraging ZTA, businesses can minimise the risk of unauthorised access and contain the impact of breaches should they occur

 

As quantum computing continues to evolve, the demand for quantum-resistant encryption methods will also increase, paving the way to a new age of information security. By utilising a proactive multi-layered strategy which leverages quantum technology in tandem with advanced cyber-security solutions, businesses can improve their cyber-security posture and safeguard their digital systems in the new quantum age.

 

---

 

Dominik Birgelen is CEO of oneclick AG Group

 

Main image courtesy of iStockPhoto.com and Chayanan