后量子加密
什么是后量子加密?
后量子加密 (PQC) 是指一种能够抵御量子计算机攻击的新型算法。后量子算法以全新数学难题为基础,未来将取代RSA和ECC等现行加密方案。实现此类算法,需要依靠深度创新以及学术界与工业界之间的密切合作。
未来,量子计算机将有可能打破今天的公钥加密标准,对信息安全构成重大威胁。为提前应对这种威胁,意法半导体启动了后量子加密计划,为新算法的开发和标准化提供支持,并确保平稳过渡到新的敏捷加密生态系统。
意法半导体后量子加密计划
意法半导体各个技术领域的专家正以两大目标为导向,努力开发面向未来的后量子加密技术。
标准化流程
The National Institute of Standards and Technology (NIST) is working together with the industry to pioneer new cryptography standards that will protect data from both quantum and classical threats. In August 2024, NIST released three new cryptographic standards: FIPS-203 (ML-KEM) for key encapsulation, FIPS 204 (ML-DSA), and FIPS 205 (SLH-DSA) for digital signature. Initially developed by ST, the Keccak algorithm plays a key role in these newly standardized quantum-safe algorithms. These three algorithms complement the LMS and XMSS (SP800-208) algorithms standardized in 2020.
确保顺利且平稳的迁移
Build new application standards
ST is actively contributing to new application standards that will support a mix of quantum-safe and classical algorithms.
Offer crypto-agile products
To keep up with evolving threats and cryptographic standards, ST R&D teams focus on the development of crypto-agile hardware and software products. The goal is to help developers quickly upgrade their solutions.
The National Institute of Standards and Technology (NIST) is working together with the industry to pioneer new cryptography standards that will protect data from both quantum and classical threats. In August 2024, NIST released three new cryptographic standards: FIPS-203 (ML-KEM) for key encapsulation, FIPS 204 (ML-DSA), and FIPS 205 (SLH-DSA) for digital signature. Initially developed by ST, the Keccak algorithm plays a key role in these newly standardized quantum-safe algorithms. These three algorithms complement the LMS and XMSS (SP800-208) algorithms standardized in 2020.
标准化流程
Build new application standards
ST is actively contributing to new application standards that will support a mix of quantum-safe and classical algorithms.
Offer crypto-agile products
To keep up with evolving threats and cryptographic standards, ST R&D teams focus on the development of crypto-agile hardware and software products. The goal is to help developers quickly upgrade their solutions.
确保顺利且平稳的迁移
后量子加密就绪产品
意法半导体现已推出支持PQC的产品。例如,基于Arm Cortex®-M内核和Cortex®-A的STM32 MCU和MPU,以及SPC5 32位和Stellar 32位汽车MCU,这些产品均配备了SHA-3加速器,以便支持后量子加密软件库。
此外,我们正在开发的新产品将集成优化的PQC加密加速器和加密库,旨在将先进的安全性、认证功能与卓越的性能完美结合。
意法半导体提供各种支持PQC的解决方案:
- 面向STM32的软件库 (X-Cube PQC)
- 面向安全微控制器的认证软件库 (NesLib-PQML)
- 一体化可信平台模块 (STSAFE-TPM),业界首个采用LMS签名保护固件更新的通用标准解决方案。
