Post-quantum cryptographic solutions refers to a range of public-key cryptographic solutions that are considered secure in the quantum setting. Many of these algorithms are currently going through a standardization process being held by the National Institute for Standards and Technology (NIST). A few other institutions like the European Telecommunications Standards Institute (ETSI) and the Internet Engineering Task Force (IETF) are also developing their own standards, but the majority of the focus is on NIST’s post-quantum standardization process (NIST PQS). This process was officially announced in late 2016 and has recently came to a final stage with some winners and alternate algorithms that at PQSecure we proudly developed side-channel resistant IPs for them. 

Post-Quantum Public Key Exchange 

Post-quantum public key exchange refers to a set of algorithms designed to create a shared secret key over a public (unsecure) network, which are perceived to be quantum-safe. The NIST PQS process is currently standardizing some of these algorithms. The mathematical categories of these algorithms include isogeny-based, lattice-based, and code-based. There are pros and cons to each of these and thus NIST is expected to standardize more than one algorithm before the process is complete. PQSecure is working with each of these algorithms to develop high quality solutions once the standards are announced.

Post-Quantum Digital Signatures

Post-quantum digital signature algorithms are designed to not only verify the sender of the information, but also to validate the contents have not been changed, all while being quantum-safe. There are a few examples of post-quantum digital signatures that are already standardized (XMSS and LMS NIST FIPS 186), but the NIST PQS process hopes to standardize a few more of these algorithms to offer a wider range of possible solutions. 

Post-Quantum Solutions
Type Category
Key Exchange

 Lattice-based (Kyber)

Code-based (BIKE, HQC, McEliece)

Digital Signatures Stateless Lattice-based (Dilithium, Falcom)  Hash-based (SPHINCS+)
Digital Signatures Stateful XMSS/LMS

PQSecure offers a wide range of hardware solutions and software solutions for every need from high-end servers to low-end embedded devices with side-channel countermeasures added by design. 

  • PQSecure-CRYSTALS-1000: A unified hardware IP for CRYSTALS-KYBER and CRYSTALS-Dilithium is ready for deployment. 

For more information on PQSecure products, see our product brief here, or feel free to contact us.