CNCF23_Cryptoagility.pptx (2).pdf

《CNCF23_Cryptoagility.pptx (2).pdf》由会员分享，可在线阅读，更多相关《CNCF23_Cryptoagility.pptx (2).pdf（26页珍藏版）》请在三个皮匠报告上搜索。

1、Natalie FisherCryptographic Agility:Preparing Modern Apps for Quantum Safety and BeyondAgenda What is Cryptographic Agility?Why do you care?How to prepare VMwares PlansRequired DisclaimerWhat is Cryptographic Agility?Cryptographic AgilityCryptographic Agility The ability to reconfigure an applicatio

2、n or system with a different cryptographic algorithm(or implementation).Cryptographic Agility AdvantagesTransition to New AlgorithmsChange LibraryModifying ConfigCompliance StandardsRetiring AlgorithmsStreamline RemediationCurrent landscapeCurrent Landscape ProblemsLack of visibilityNo unificationRe

3、architecting requiredChallenges:The StakeholdersLibrary DevelopersApplication DevelopersHW Platform DevelopersStandards(e.g.,NIST,IETF)Business Operations TeamsIT InfoSec ProfessionalsCrypto ProvidersEnterprise ConsumersIT Infrastructure TeamsSolution ProvidersSystem Software DevelopersCloudPlatform

4、 DevelopersTraditional Building BlocksHave we provided adequate transition frameworks?Are we hearing them?Future LandscapeFuture landscape benefitsStandards migrationComplianceGood engineeringWhy do you care?15 PKI and crypto ARE critical infrastructure and usage is ever-expanding Crypto expert reso

5、urces are scarce and expensive Risks can be unknown because elements are not visible/managed Many organizations find out too late what it takes to manage crypto assets well Procedures,Policies and(crypto)platforms are not always robust or maintained Best practices are often inconvenient Certificates

6、 Keys Secrets Crypto Algorithm Crypto LibraryCrypto is Everywhere16Implementation FlawsHEARTBLEED Scaled Quantum Computers are on the HorizonRigetti Aspen-1118Decrypt later with scaled Quantum ComputerHarvest Now:Copy encrypted data communications.Store.Internet VPNHarvest Now,De