The current transistor-based “classical” computing that powers laptops and smartphones is reaching its limits. However, the field of quantum computing is making significant progress, which has the potential to dramatically extend those limits. Instead of replacing classical computing, quantum computing can complement it by solving previously unsolvable problems that are currently beyond the reach of traditional computing. This means that these two types of computing can work together to create innovative solutions that were previously impossible to achieve.
What are quantum computers?
To gain a deeper understanding of the fundamentals of quantum computing, there are various resources available on the websites of industry leaders. In a nutshell, while conventional computers store information in bits and bytes representing 1s and 0s, quantum computers store information in qubits, which are the quantum equivalent of bits. Qubits make use of the strange and intricate behaviors of subatomic particles, such as their ability to be in multiple states simultaneously (known as quantum superposition), unlike classical bits, which can only store one value (1 or 0) at a time.
For certain types of problems, quantum computers can perform calculations much faster than classical computers. In some cases, what may take classical computers hundreds, thousands, or even billions of years to complete, quantum computers can accomplish in just minutes. Cryptography is one such problem domain that is particularly suited to quantum computing. However, this poses both a threat and an opportunity for businesses that depend on secure data.
Before diving into the implications of quantum computing on cryptography, it’s worth taking a closer look at what cryptography is and how it is utilized in modern computing.
What is cryptography?
Cryptography is the practice of transforming a message into an unreadable format, known as ciphertext, to ensure that only the intended recipient with the correct cryptographic key can decode and read the original message, known as plaintext. The process of cryptography is widely used across various communication mediums such as paper, radio, and the internet. However, the security of the encrypted message depends on the secrecy and authenticity of the cryptographic key. In practice, anyone who has access to the key can decode the message, and this includes those who steal or guess the key.
Today, we use encryption to secure sensitive information during transactions such as logging in to a secure website, sending emails, or making online payments. The encryption key, which is usually a long string of 1s and 0s, is sent to the website or payment processor to verify the user’s identity and secure the sensitive data. The strength of the encryption depends on the length of the key, with longer keys being more secure. Encryption is a critical component of all network transactions, including online banking, email, and big data transfers.
However, with the advancement of quantum computing, current cryptographic ciphers are under threat. The potential computing power of quantum computers may pose significant challenges to the security of encrypted data and transactions, which could have severe implications for the integrity of communication across the globe.
Why do quantum computers threaten cryptography?
Quantum computers pose a threat to cryptography due to their ability to exploit the unusual behaviors of qubits. These behaviors allow quantum computers to quickly decipher the encryption keys that are currently used to secure massive amounts of sensitive data.
One type of encryption that is particularly vulnerable to quantum threats is public key encryption (PKE). RSA, a popular form of PKE that is used for digital signatures and email encryption, relies on the difficulty of factoring large numbers into their prime roots to keep data secure. RSA keys are created by multiplying two large prime numbers together. However, quantum algorithms will be able to find prime factors in mere minutes, which makes breaking RSA keys much easier.
This presents a serious challenge to data security, and businesses should begin preparing for potential quantum disruption now. Decision-makers can take steps to prepare for this threat, including implementing post-quantum cryptographic algorithms, conducting security assessments, and creating contingency plans in case of a quantum attack.
How are companies protecting from the future threat?
How are companies protecting themselves from future quantum threats? This is a critical question that requires proactive measures to be taken to minimize the potential impact of quantum computing. The following strategic outline can help businesses prepare for quantum readiness:
- Take Inventory: Start by assessing your most critical datasets and identifying systems that use cryptographic technologies, including hardware with built-in cryptographic functions that may require firmware updates or replacement.
- Identify Quantum Vulnerable Systems: Tag systems or transactions as quantum vulnerable if they rely on public key cryptography. Evaluate the business value of a quantum vulnerable system by considering the assets it protects (such as passwords, keys, root and signing keys, and sensitive personally identifiable information) and how long the data requires protection.
- Prioritize Cryptographic Transition: Once you have identified your quantum vulnerable systems, prioritize them based on their business value and plan a cryptographic transition.
- Stay Abreast of Emerging Standards: Stay informed about emerging standards and new cryptographic technologies, and ensure that your organization is up-to-date with the latest developments in the field.
The key takeaway for business leaders is to recognize the challenges and opportunities presented by quantum computing and to prepare their organizations for the eventual shift towards embracing quantum. By securing their most vulnerable assets first, businesses can ensure they are prepared for the quantum era. The good news is that while quantum computing presents potential perils, it can also provide more effective protection of sensitive data. Businesses can take their first steps towards quantum preparedness by consulting with experts in the field.