Software Signing in the Quantum Age

Presented by

Antonio Vaira Cybersecurity Expert - PKI Siemens AG

About this talk

Siemens Product PKI Certificate Management and Digital Signature services - these services are used as a one-stop internal service to provide Siemens business units a highly trustworthy solution to handle all of their digital certificates and signature needs. In this presentation Antonio will cover: High-level use case introduction: SW signing (via, for example, CMS signatures) and which protection goals it helps achieve, specifically in the Siemens ecosystem How SW signing is done today with traditional cryptography and SignServer + EJBCA within the Siemens ecosystem How SW signing can be securely done in the future employing PQC, e.g., "NIST 3rd" round digital signature algorithms or stateful HBS schemes (c.f. Commercial National Security Algorithm Suite 2.0) Presenting results of PoC with PQC signature algorithms such as Dilithium, including remaining open topics to have an end-to-end PQC SW signing in place. Earn 0.25 CPE credits on this session. Keyfactor is an approved (ISC)² CPE Submitter, partner.
Related topics:

More from this channel

Upcoming talks (4)
On-demand talks (159)
Subscribers (9728)
Keyfactor is the machine and IoT identity platform for modern enterprises. The company helps security teams manage cryptography as critical infrastructure by simplifying PKI, automating certificate lifecycle management, and enabling crypto-agility at scale. Companies trust Keyfactor to secure every digital key and certificate for multi-cloud enterprises, DevOps, and embedded IoT security.