Quantum-safe Security Working Group
Introduction to the Quantum-safe Security Working Group
Modern encryption methods are composed of two parts: an algorithm that encrypts or decrypts our data with a random, secret key, and a method of sharing the secret key between the parties. The encryption algorithm (AES‐256) appears safe, at least for the next 20 to 30 years, based on our current knowledge of cryptographic attacks. But the methods for generating and sharing the random, secret key will no longer be safe once quantum computers are readily available. Moreover, recent revelations have shown that these same methods have been seriously weakened by flaws placed intentionally or unintentionally into the computer algorithms by the designers. Data that has been transmitted over a network using these technologies is probably secure for now, but will not remain secure for the long term.
The Quantum‐safe Security (QSS) Working Group has been formed to address key generation and transmission methods and to help the industry understand quantum‐safe methods for protecting their networks and their data. Two differing technologies are covered by this working group, namely:
- Quantum key distribution, or QKD, which is a physics‐based technology to securely deliver keys, and
- Post‐quantum cryptography, which refers to mathematical algorithms that do not suffer from the same weakness vis‐à‐vis quantum computing that existing algorithms do.
Both technologies have a place in the secure networks of the future. The working group is focused on long-term data protection in this world of rising cryptanalysis capabilities. The goal of the working group is to support the quantum‐safe cryptography community in development and deployment of a framework to protect data whether in movement or at rest.
Working Group Scope and Responsibilities
The focus of the Quantum‐Safe Security Working Group is on cryptographic methods that will remain safe after the widespread availability of the quantum computer. This working group will be a forum for corporations, organizations, and individuals who are interested in the topic of quantum‐safe security. The goal in forming this working group is to spark discussions on projects and issues regarding securing communications for which current encryption methods will not be safe any more when, in the near future, quantum computers are available.
Quantum-safe Security Working Group Leadership
Quantum-safe Security Co-chairs
Ludovic Perret is the co-chairman of the Quantum-Safe Security Working Group (QSS WG) organized by the Cloud Security Alliance. Ludovic is Associate Professor at Sorbonne University (SU). Ludovic is a specialist in quantum-safe cryptography. He defended a habilitation thesis on this subject and published more than 60 scientific articles in quantum-safe cryptography. Lastly, Ludovic co-authored 3 submissions to the first round of the NIST PQC standardization process.
Ludovic is also involved in industrial transfer in various ways. Besides CSA QSS-WG, he participates to quantum-safe standardization through the ETSI TC CYBER-QSC.
Ludovic was a scientific advisor for Kryptnostic; a Californian start-up working on homomorphism encryption. He recently co-founded the spin-off called Post-Quantum Advanced Technologies (PQAT) that is proposing consulting and innovative products for long-term security.
In 2018, Ludovic received the Atos-Joseph Fourier Prize in the area of Quantum Technologies for his contributions in quantum-safe cryptography and involvement in industrial transfer.
Bruno Huttner is the chairman of the Quantum-Safe Security Working Group (QSS WG) organized by the Cloud Security Alliance. The QSS WG has been formed to address key generation and transmission methods and to help the industry understand
quantum‐safe methods for protecting their networks and their data.
Bruno is an engineer (Ecole Centrale Paris) and a physicist (PhD from the Technion, Israel Institute of Technology). During an international academic career spanning the UK, Japan and Switzerland, he studied quantum effects in optical fibers, quantum cryptography and telecommunication. He then moved to the business world, as a founder and manager of a start-up, Luciol Instruments in 2000, active in test&measurements of optical fibers. In 2002, Luciol was acquired by Sunrise Telecom, an American test&measurement company. Bruno became General Manager of the division, which was subsequently divested in 2008. Bruno led a management buyout, which restarted Luciol in 2009, and refocused the company towards the aviation market.
Bruno joined ID Quantique in 2014, participating in business development and product management in the Quantum Security division, which develops next-generation encryption, and especially quantum key distribution systems. These systems are designed to be safe against the power of quantum computers, which threaten the conventional encryption methods.
During his career, both in academia and in business, Bruno participated and gave lectures in many international conferences. He was also active in standardisation organisations, first in ITU-T on polarisation effects in optical fibers, then in SAE, ARINC and ASD/STAN for applications of optical fibers in aviation, prior to his role as chairman of the QSS WG in CSA.
Quantum-safe Security Working Group Initiatives
JOIN WORKING GROUP
Connect with Us
Quantum-safe Security Working Group Downloads
Description: Most people pay little attention to the lock icon on their browser’s address bar that signifies a secure connection called HTTPS. This connection establishes secure communications by providing authentication of the website and web server as well as encryption of communications between the client and server. If the connection is not secure, then a…
Release Date: May 23, 2018
Description: Over the past fifty years, the digital age has sparked the creation of a remarkable infrastructure through which a nearly infinite variety of digital transactions and communications are executed, enabling businesses, education, governments, and communities to thrive and prosper. Millions of new devices are connecting to the Internet, creating, processing, and transferring digital information…
Release Date: April 19, 2018
A random number is generated by a process whose outcome is unpredictable, and which cannot be reliably reproduced. Randomness, quantitatively measured by entropy, is the measure of uncertainty or disorder within a set of data. The higher the level of unpredictability, the more random the data is and the more valuable it becomes, particularly for…
Release Date: June 09, 2016
The security of QKD relies on fundamental laws of nature, which are invulnerable to increasing computational power, new attack algorithms or quantum computers. It is secure against the most arbitrarily powerful eavesdroppers.
Release Date: August 05, 2015