[1]冯艺萌,刘昂*.迈向量子安全:后量子密码迁移研究与思考[J].计算机技术与发展,2024,34(05):103-108.[doi:10.20165/j.cnki.ISSN1673-629X.2024.0047]
 FENG Yi-meng,LIU Ang*.Toward Quantum Security:Research and Reflections on Post-quantum Cryptographic Migration[J].,2024,34(05):103-108.[doi:10.20165/j.cnki.ISSN1673-629X.2024.0047]
点击复制

迈向量子安全:后量子密码迁移研究与思考()

《计算机技术与发展》[ISSN:1006-6977/CN:61-1281/TN]

卷:
34
期数:
2024年05期
页码:
103-108
栏目:
网络空间安全
出版日期:
2024-05-10

文章信息/Info

Title:
Toward Quantum Security:Research and Reflections on Post-quantum Cryptographic Migration
文章编号:
1673-629X(2024)05-0103-06
作者:
冯艺萌1刘昂12*
1. 北京电子科技学院,北京 100070;2. 北京邮电大学 网络空间安全学院,北京 100876
Author(s):
FENG Yi-meng1LIU Ang12*
1. Beijing Electronic Science and Technology Institute,Beijing 100070,China;2. School of Cyberspace Security,Beijing University of Posts and Telecommunications,Beijing 100876,China
关键词:
后量子密码迁移信息安全系统安全网络安全
Keywords:
post-quantum cryptographymigrationinformation securitysystem securitynetwork security
分类号:
TP309.2
DOI:
10.20165/j.cnki.ISSN1673-629X.2024.0047
摘要:
量子科技的飞速发展使得大规模量子计算机的实现只是时间问题,一些量子算法的提出(如 Shor、Grover、Simon)使得对现代密码体制(公钥密码和对称密码)实施量子计算攻击成为可能,从而严重威胁经典密码的安全。 为提升密码系统抵抗量子计算攻击的能力,以格密码为代表的后量子密码(PQC)算法得到广泛关注和研究。 从经典密码算法到 PQC的迁移是密码系统实现量子安全的有效路径。 首先,该文调研了 NIST,ETSI 及其他组织和学者提出的 PQC 迁移路线,总结起来,就是以 NIST 为代表的替换方案、以 ETSI 为代表的二次加密方案以及其他混合加密方案三种迁移路线;其次,针对 PQC 迁移过程,从迁移目标、迁移准备、迁移实施三个环节介绍了迁移策略;此外,为了促进 PQC 迁移的顺利高效实施,提出了需要考虑的迁移评估要素,包括资源投入、时间成本、业务风险、维护成本、用户体验、商业影响六个方面;最后,提出 PQC 迁移下一步研究方向。 总之,文中工作将为 PQC 迁移的方案设计和高效实施提供有益参考。
Abstract:
The rapid development of quantum technology brings the realization of large-scale quantum computers just a matter of time,and the proposal of some quantum algorithms (e. g. , Shor,Grover,Simon) makes it possible to implement quantum computing attacks on modern cryptosystems ( public-key cryptography and symmetric cryptography),which seriously threatens the security of classical cryptography. In order to enhance the ability of cryptosystems to resist quantum computing attacks,post-quantum cryptography (PQC) algorithms,represented by lattice cryptography, have received extensive attention and investigation. The migration from classical cryptography algorithms to PQC is an effective path for cryptosystems to realize quantum security. Firstly, we investigate the PQC migration routes proposed by NIST,ETSI,and other organizations and scholars,which are summarized as three migration routes,namely, the substitution scheme represented by NIST, and the double encryption scheme represented by ETSI, and other hybrid encryption schemes. Secondly,for the migration process of PQC,we introduce the migration strategy from the three aspects of migration target,migration preparation,and migration implementation. In addition,in order to promote the smooth and efficient implementation of PQC migration,we propose the migration evaluation elements to be considered,including six aspects of resource investment,time cost,business risk,maintenance cost, user experience, and business impact. Finally, we propose the future research direction of PQC migration.Overall,the work in this paper will provide a useful reference for the scientific design and efficient implementation of PQC migration.

相似文献/References:

[1]檀迎军 侯秀萍 赵云峰.工作流迁移问题的研究[J].计算机技术与发展,2009,(01):139.
 TAN Ying-jun,HOU Xiu-ping,ZHAO Yun-feng.Study of Workflow Transfer Problem[J].,2009,(05):139.
[2]詹金华 刘锋.基于FTP协议的素材迁移服务器的设计与实现[J].计算机技术与发展,2008,(03):56.
 ZHAN Jin-hua,LIU Feng.Implementation and Design of Material Transfer Server Based on FTP[J].,2008,(05):56.
[3]王勇 王忠群 韦良芬.移动Agent的一种支持安全与容错的迁移机制[J].计算机技术与发展,2007,(03):169.
 WANG Yong,WANG Zhong-qun,WEI Liang-fen.A Migration Mechanism of Mobile Agent System Supporting Security and Fault- Tolerance[J].,2007,(05):169.
[4]宋欣 宋飞 周华春.基于RTSP协议的流媒体迁移系统实现[J].计算机技术与发展,2012,(12):59.
 SONG Xin,SONG Fei,ZHOU Hua-chun.Implementation of Streaming Media Migration System Based on RTSP[J].,2012,(05):59.

更新日期/Last Update: 2024-05-10