Java application security would be enhanced through a couple of proposals to resist quantum computing attacks, one plan involving digital signatures and the other key encapsulation.
The two proposals reside in the OpenJDK JEP (JDK Enhancement Proposal) index. One proposal, titled “Quantum-Resistant Module-Lattice-Based Digital Signature Algorithm,” calls for enhancing the security of Java applications by providing an implementation of the quantum-resistant Module-Latticed-Based Digital Signature Algorithm (ML-DSA). Digital signatures are used to detect unauthorized modifications to data and to authenticate the identity of signatories. ML-DSA is designed to be secure against future quantum computing attacks. It has been standardized by the United States National Institute of Standards and Technology (NIST) in FIPS 204.
The other proposal, “Quantum-Resistant Module-Lattice-Based Key Encapsulation Mechanism,” calls for enhancing application security by providing an implementation of the quantum-resistant Module-Lattice-Based Key Encapsulation Mechanism (ML-KEM). KEMs are used to secure symmetric keys over insecure communication channels using public key cryptography. ML-KEM is designed to be secure against future quantum computing attacks and has been standardized by NIST in FIPS 203.
Discussion about this post