Over the last year many institutions researching quantum computing and quantum information theory. Through these studies the current data protection mechanisms that comprise cryptographic system relying on computational hardness to protect data and quantum computers have less of a challenge to reverse engineer a private key.
In Practise this means that data residing in databases for 20+ years, for instance, will be subject to discovery by those with access to quantum computing systems in the future. This is not limited to personal information but also widely spread and could affect information from Bank accounts, identity data, military information, medical records and other sensitive information’s.
Encryption methods, such as, and not limited to, which are built on top of RSA, DSA, ECDH, DH and other variants of such are vulnerable to quantum computing and could be easily broken.
- Crypto Systems
- Security Data/Protocols
- And others…
In Terms, ciphers such as RSA, ECC are not quantum-safe due the inability to adapt the key size to rate of development of quantum computing. If considered, for instance, the key size is increased to protect against quantum computing of such it would thwart and become impractical in terms of speed and channel size. That is based on considering an increase of factor 8 or more every two years to compensate quantum computing with a few thousand qubits to stay ahead.
It is believed that symmetric cipher like AES are quantum-safe, whereas public ciphers such as RSA is not. A protocol with the ability to adapt to quantum-safe cipher is considered quantum-safe.
RSA-2048 in conventional computing has 128 bits, in quantum computing 0 bits.
AES-256 in conventional computing has 256 bits, in quantum computing 128 bits.
In short, all products, are affected due to quantum computing, for instance: Certificate (CA), Digital Signature, SSO, SSL/TLS, IPsec, SSH, VPN, S/MIME and others due the reliance of exclusively or partly on RSA, ECC, Diffie-Hellmann and DSA are believed not to be quantum-safe. However, there is not enough research data available for a conclusive statement.
What we do
Digital Ledger Systems is working on a pre-implementation of its Barracuda System to become quantum-safe over-time with careful consideration of:
- X – Time in years how long our encryption should be safe
- Y – Time it takes to ensure Barracuda is quantum-safe
- Z – Time in years before large-scale quantum computer are available
These factors are essential to ensure a long-term assurance against quantum computer and to be quantum-safe. During the timeframe 2018/2019 Digital Ledger Systems is planning to release Barracuda Blockchain with pre-quantum-safe implementations to such time where quantum-safe implementation can be reached.
Digital Ledger Systems is working on an adoptable cipher key which is to be implemented as encryption key within Barracuda to compensate the growth of quantum computing over time. This is a fundamental approach to ensure the increase of qubits in time is considered.
The first releases with pre-quantum-safe encryption methods are planned in 2018 and followed by quarterly releases thereafter. The initial pre-quantum-safe releases are planned during the pilot phases with our clients before they are released to our production Barracuda Blockchain solution.
Other factors are also the delivery and key management of public keys based on QKD (Quantum Key Distribution) to become and remain resilient to future advances in crypto analysis and future quantum computing.
Roadmap and release plan of Barracuda quantum-safe will follow in Q3 2018 and listed on www.dlsag.ch.
© Copyright 2018 Digital Ledger Systems AG. The information contained herein is subject to change without notice. The
only warranties for Digital Ledger Systems AG products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Digital Ledger Systems AG shall not be liable for technical or editorial errors or omissions contained herein.