HCTIT reposted this
An exciting day for National Institute of Standards and Technology (NIST) & the security concerns around quantum computing, something I've been following closely the last few years... It deserved another post... NIST Introduces Post-Quantum Cryptography Standards Here is a quick run down... (Nerd alert.......) --FIPS 203: Lattice-Based Key-Encapsulation Mechanism (ML-KEM)-- Algorithm Basis: Based on the "Module Learning with Errors" (MLWE) problem, a variant of the Learning with Errors (LWE) problem. Security Parameter Sets: ML-KEM-512 ML-KEM-768 ML-KEM-1024 Key Sizes: Vary based on security levels, with smaller key sizes for efficient transmission and computation. Speed: Designed to be fast in key generation and encap/decap processes, making it suitable for a wide range of applications. --FIPS 204: Lattice-Based Digital Signatures (ML-DSA)-- Algorithm Basis: Built on CRYSTALS-Dilithium, which relies on the difficulty of lattice-based problems, specifically structured lattices. Security Levels: Dilithium2 Dilithium3 Dilithium5 Signature Size: Smaller compared to other post-quantum algorithms. Verification and Signing Efficiency: Designed to balance the computational cost between signing and verification, offering quick verification times. --FIPS 205: Stateless Hash-Based Digital Signatures (Sphincs+)-- Algorithm Basis: Sphincs+ is a stateless hash-based digital signature scheme, meaning it does not require the signer to maintain state between different signatures. Security Basis: Relies on the security of hash functions, making it resistant to quantum attacks as long as the underlying hash functions remain secure. Parameter Sets: Sphincs+-128s Sphincs+-192s Sphincs+-256f Efficiency: Though generally slower than other lattice-based schemes, it is designed to be robust with the additional advantage of being stateless, which simplifies implementation and reduces the risk of key reuse issues. Well done to the whole team at National Institute of Standards and Technology (NIST) https://lnkd.in/gSnJMzHK #Cybersecurity #QuantumComputing #Encryption #DataProtection #Free #Knowledge