How the NSA is dealing with quantum threats: From post-quantum algorithms to QKD rejection
Quantum computing, with its ability to solve highly complex mathematical problems, is revolutionizing the cryptographic security landscape. Traditional algorithms such as RSA (based on large integer factorization) and ECC (which uses the properties of elliptic curves to generate keys) could become obsolete in the face of advanced quantum computing capabilities, putting critical systems and the protection of sensitive data at risk. This challenge affects both commercial entities and national systems that rely on cryptography to ensure the confidentiality and integrity of information.
In response to this threat, the National Security Agency (NSA) has published “The Commercial National Security Algorithm Suite 2.0 and Quantum Computing FAQ”. This resource addresses key questions related to quantum computing and offers guidelines for protecting national security systems in a post-quantum environment, providing practical strategies and standardized solutions to facilitate this transition.
The role of CNSA Suite 2.0
The Commercial National Security Algorithm Suite 2.0 (CNSA 2.0) is the framework proposed by the NSA to ensure cryptographic security in the post-quantum era. Designed to replace classical algorithms vulnerable to quantum computer attacks, CNSA 2.0 introduces robust alternatives capable of resisting these threats, with the primary goal of protecting national security systems and ensuring long-term data confidentiality and integrity.
CNSA 2.0 is characterized by its pragmatic approach, which prioritizes post-quantum solutions previously evaluated by experts and with practical implementations. This approach allows for a gradual transition to advanced technologies, minimizing disruptions to existing infrastructures. In this way, the suite not only protects current systems, but also sets a clear path towards a more secure post-quantum future.
Discussion of the QKD
One of the most discussed technologies in the field of quantum cryptography is Quantum Key Distribution (QKD). Although it represents a significant advance from a scientific standpoint, the NSA believes that QKD is neither a viable nor a sufficiently robust solution for protecting national security systems (NSS). In the paper, the NSA addresses this issue head-on:
Q: Can I use a QKD system to protect my national security system from a quantum computer?A: No. The technology involved is of significant scientific interest, but it only addresses some security threats and requires significant engineering modifications to NSS communications systems. NSA does not generally consider QKD a practical security solution for protecting NSS. NSS owners should not use or research QKD at this time.
While QKD holds promise in certain scenarios, its practical limitations are evident. It requires substantial modifications to communication infrastructures and does not address all security threats, leading the NSA to advise against its implementation in national systems.
We have prepared another article where we will go much deeper into QKD.
The importance of the transition to post-quantum algorithms
Faced with the limitations of technologies such as QKD, the NSA and other international organizations are actively promoting the development and adoption of post-quantum algorithms. These algorithms are designed to resist attacks by quantum computers, offering a more practical and adaptable solution for long-term security.
The transition to post-quantum algorithms involves significant challenges, such as rigorously assessing their security, adapting existing infrastructures and ensuring interoperability in a global ecosystem. However, these technologies offer a standards-based approach that minimizes the risk of vulnerabilities, enabling a progressive implementation that reduces costs and disruptions.
In addition, post-quantum algorithms represent a strategic solution to protect sensitive information against future threats, striking a balance between technological innovation and practical feasibility.
The article by The NSA’s “The Commercial National Security Algorithm Suite 2.0 and Quantum Computing FAQ” highlights the urgency of taking a pragmatic approach to the challenges posed by quantum computing. By answering key questions and promoting solutions based on post-quantum algorithms, it reinforces the importance of preparing for a future where current systems could be compromised.
This approach highlights the need to balance innovation with implementation. As we have discussed in the other publications, in a world where quantum breakthroughs are inevitable, clear and standardized strategies will be essential to ensure long-term security, prioritizing robust and practical solutions.
