Securing the Future of the Internet: Exploring Crypto-Agility & Quantum

Presented by

John Ray, Dir. of Product Mgmt, Thales; Alex Truskovsky, Dir. of Strategy, ISARA; Tim Hollebeek, Tech Strategist, DigiCert

About this talk

The security of the Internet as a whole is at risk with the onset of large-scale quantum computing is looming. While next-generation of cryptography standards are in progress, how can we begin securing everything that connects online now to reduce the risk associated with this emerging threat? In order for a website’s SSL certificate to be trusted, there first needs to be a trusted certificate authority’s root certificate physically embedded into devices. This is a complicated process for certificate authorities. In order for a new root to be embedded into multiple operating systems, there’s several operational steps required such as settling legal agreements, manufacturing new hardware with the root or delivering hardware-wide firmware updates. This can sometimes take years. Fortunately, stateful hash-based signatures have been approved and standardized by the IETF (and expectedly soon by NIST) and combined with crypto-agile approaches, gives us the ability to tackle this challenge today without starting from step one by embedding entirely new root certificates. In this webinar, you’ll learn about: • How the quantum threat impacts internet security and why it is important we begin preparing for it today • Exploring stateful-hash based signatures, their challenges and how they’ve been solved for use on Thales Luna HSMs • How crypto-agility combined with stateful hash-based signatures allows you to embed quantum-safe roots today without compromising interoperability
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (1)
Subscribers (45320)
DigiCert is the world’s premier provider of high-assurance digital certificates. Since our founding almost fifteen years ago, we've been driven by the idea of finding a better way. A better way to provide authentication on the internet. A better way to tailor solutions to our customer’s needs in SSL, PKI and IoT security.