International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Entering to a New Era of Crypto Engineering: Cryptographic Visibility and Agility

Authors:
Jihoon Cho
Hyojin Yoon
Changhoon Lee
Eunkyung Kim
Janghyuk Ahn
Hunhee Yu
Download:
Search ePrint
Search Google
Presentation: Slides
Abstract: Mosca introduced three crucial aspects for real-world cryptography in the quantum computing era: security shelf-life, migration time, and collapse time. While collapse time has been extensively studied, migration time has not received as much attention. Acknowledging the complexity of post-quantum cryptography (PQC) migration, NIST launched the `Migration to Post-Quantum Cryptography' project in June 2022. Migration to PQC involves three primary tasks: inventorying the use of cryptography, analyzing risks and determining migration priorities, and executing migration to PQC. The two tasks of inventorying and migration, in particular, demand capabilities of cryptographic visibility and cryptographic agility, respectively. This is especially important for enterprises that own and maintain numerous IT systems for migration at scale. While participating in NIST's `Migration to PQC' project, we investigated the possibility of using existing open sources to obtain cryptographic visibility and agility. More specifically, we modified or extended the features of existing open-source tools in the DevOps pipeline for automated inventorying of cryptographic usage, and also demonstrated changing cryptographic providers without altering applications making use of the well-designed Java Cryptography Architecture. We have gained a clearer understanding and several findings regarding migration to PQC, and this talk will provide insights for IT service providers as well as open-source community regarding PQC migration. Next, we briefly describe how we can make use of existing tools to gain cryptographic visibility and agility.
Video: https://www.youtube.com/watch?v=Ay1vpMZmubo
BibTeX
@misc{rwc-2024-35382,
  title={Entering to a New Era of Crypto Engineering: Cryptographic Visibility and Agility},
  note={Video at \url{https://www.youtube.com/watch?v=Ay1vpMZmubo}},
  howpublished={Talk given at RWC 2024},
  author={Jihoon Cho and Hyojin Yoon and Changhoon Lee and Eunkyung Kim and Janghyuk Ahn and Hunhee Yu},
  year=2024
}