A Scalable Framework for Post-Quantum Authentication in Public Key Infrastructures
By: Antonia Tsili , Konstantinos Kordolaimis , Konstantinos Krilakis and more
Potential Business Impact:
Protects computers from future quantum attacks.
This work explores the performance and scalability of a hierarchical certificate authority framework with automated certificate issuance employing post-quantum cryptographic (PQC) signature algorithms. The system is designed for compatibility with both classical and PQC algorithms, promoting crypto-agility while ensuring robust security against quantum-based threats. The proposed framework design expects minimal cryptographic requirements from potential clients, protects certificates of high importance against cross-dependent chains-of-trust and allows for prompt switching between classical and PQC algorithms. Finally, we evaluate SPHINCS$^+$, Falcon, and Dilithium variants in various configurations of certificate issuance and verification accommodating a large client base, underlining the trade-offs in balancing performance, scalability, and security.
Similar Papers
Applied Post Quantum Cryptography: A Practical Approach for Generating Certificates in Industrial Environments
Cryptography and Security
Makes computer security ready for future threats.
Extensible Post Quantum Cryptography Based Authentication
Cryptography and Security
Secures online secrets from future quantum computers.
A Comparative Study of Hybrid Post-Quantum Cryptographic X.509 Certificate Schemes
Cryptography and Security
Protects secrets from future super-computers.