Towards security recommendations for public-key infrastructures for production environments in the post-quantum era
This work tackles the critical problem of securing PKIs against quantum attacks for organizations relying on production environments, but it is incremental as it builds on existing discussions without introducing new methods.
The paper addresses the threat quantum computing poses to public-key infrastructures (PKIs) in production environments, analyzing security issues and providing recommendations for transitioning to post-quantum solutions.
Quantum computing technologies pose a significant threat to the currently employed public-key cryptography protocols. In this paper, we discuss the impact of the quantum threat on public key infrastructures (PKIs), which are used as a part of security systems for protecting production environments. We analyze security issues of existing models with a focus on requirements for a fast transition to post-quantum solutions. Although our primary focus is on the attacks with quantum computing, we also discuss some security issues that are not directly related to the used cryptographic algorithms but are essential for the overall security of the PKI. We attempt to provide a set of security recommendations regarding the PKI from the viewpoints of attacks with quantum computers.