Toward Quantum Security:Research and Reflections on Post-quantum Cryptographic Migration
The rapid development of quantum technology brings the realization of large-scale quantum computers just a matter of time,and the proposal of some quantum algorithms(e.g.,Shor,Grover,Simon)makes it possible to implement quantum computing attacks on modern cryptosystems(public-key cryptography and symmetric cryptography),which seriously threatens the security of classical cryptography.In order to enhance the ability of cryptosystems to resist quantum computing attacks,post-quantum cryptography(PQC)algorithms,represented by lattice cryptography,have received extensive attention and investigation.The migration from classical cryptography algorithms to PQC is an effective path for cryptosystems to realize quantum security.Firstly,we investigate the PQC migration routes proposed by NIST,ETSI,and other organizations and scholars,which are summarized as three migration routes,namely,the substitution scheme represented by NIST,and the double encryption scheme represented by ETSI,and other hybrid encryption schemes.Secondly,for the migration process of PQC,we introduce the migration strategy from the three aspects of migration target,migration preparation,and migration implementation.In addition,in order to promote the smooth and efficient implementation of PQC migration,we propose the migration evaluation elements to be considered,including six aspects of resource investment,time cost,business risk,maintenance cost,user experience,and business impact.Finally,we propose the future research direction of PQC migration.Overall,the work in this paper will provide a useful reference for the scientific design and efficient implementation of PQC migration.
国家科技期刊平台
NSTL
万方数据
