Encryption

Fujitsu assesses vulnerability of RSA encryption to potential quantum computer threats

Japanese ICT company Fujitsu announced that it had conducted successful trials to evaluate the widely-used RSA encryption for possible vulnerability to code-cracking by quantum computers. Fujitsu conducted the trials in January 2023 using its 39 qubit quantum simulator to assess how difficult it would be for quantum computers to crack existing RSA cryptography. Fujitsu researchers discovered that a fault-tolerant quantum computer with a scale of approximately 10,000 qubits and 2.23 trillion quantum gates would be required to crack RSA, which is much higher than current quantum computing capacities.

New report and research highlight need for quantum-safe cryptography

A new IBM report titled Security in the quantum computing era highlights that quantum computing has the potential to affect encryption. Currently used data encryption mechanisms such as public-key cryptography (PKC) can become vulnerable: using quantum computing protocols, bad actors can easily decrypt data. The report suggests the need to plan for quantum-safe cryptography and crypto-agility.

Meanwhile, Chinese scientists have claimed they are capable of breaking encryption by using ‘a universal quantum algorithm for integer factorization that requires only sublinear quantum resources’. They argue that their method would break the RSA-2048 scheme – a public key cryptosystem used widely by governments, tech companies, the defence sector, and app developers for data security – with the use of a 372-qubit quantum computer. However, several encryption experts are sceptical about this claim.

DARPA announces new investment to protect systems from post-quantum cryptography

The Defense Advanced Research Projects Agency (DARPA) announced a multimillion-dollar contract with Duality Technologies, a firm specialising in homomorphic encryption designed to withstand quantum computing attacks. It does so through higher dimensions of security and more complex encryption keys compared to classical measures. In addition to being post-quantum, homomorphic encryption can be used to protect data when in use. This is critical because oftentimes, encryption is deployed to protect the material from a storage site to a user while in transit. By serving as an end-to-end encryption style, sensitive information is less vulnerable to attack.

Apple to encrypt iCloud backups

Apple announced that it would fully encrypt backups of photos, chat histories, and most other sensitive user data in its cloud storage system worldwide. The US Federal Bureau of Investigations (FBI) responded with concerns over end-to-end encryption hindering their investigative capabilities, requesting ‘lawful access by design’ in the age of ‘security by design’.

Apple also stated that it would make iPhones compatible with physical security keys connected to the phone, allowing consumers to require them for access to their accounts from new devices. This is envisaged to be rolled out worldwide next year.

German Fraunhofer Institute and partners present demonstrated for quantum-safe electronic passport

The German Fraunhofer Institute, the German Federal Printing Bureau, and Infineon Technologies AG have presented the first demonstrator for an electronic passport that meets the security requirements of the quantum computing era. 

The technology is based on a solution for contactless data transfer between the electronic passport and the border checkpoint terminal. The solution is based on a quantum computer-resistant version of the Extended Access Control (EAC) protocol and also secures biometric data during authentication.

The system was created under the joint research project ‘PoQuID’, funded by the German Federal Ministry for Economic Affairs and Climate Action (BMWK).