JavaScript isn't enabled in your browser, so this file can't be opened. Enable and reload.

1 of 3

Post-Quantum Security

2 of 3

Area Overview

Large-scale quantum computers would break currently employed cryptography.
It takes time (2 decades) to deploy new crypto infrastructure. Need security for the future now.
Goal: develop post-quantum crypto that cannot be broken by future quantum computers.

Current status: NIST competition identified possible candidates. Majority lattice-based.

3 of 3

Challenges & Proposed Solutions

Need more candidates. Greater diversity of hardness assumptions. Better efficiency.
More cryptoanalysis effort. Many new cryptosystems have not received enough scrutiny.
Advanced post-quantum crypto: threshold cryptosystems, multiparty computation etc. Quantum analysis is subtle.
Stable/mature implementations. Resist side-channel attacks.
Training in quantum algorithms, underlying mathematics, crypto expertise, etc. Summer schools.