Addressing a post-quantum secure environment with Lattice FPGAs

With the rise of quantum computing, a new era of innovation is coming. This emerging technology leverages the laws of quantum mechanics by fusing aspects of computer science, physics and mathematics to rapidly solve complex problems that are intractable for classical computing models. For example, Google has developed a quantum computer that runs 158 million times faster than the world's most powerful existing supercomputer . The integration of quantum computing with artificial intelligence (AI) and machine learning (ML) will fundamentally redefine the impact of technology on humanity and raise the upper limit of enterprise digital transformation.

However, the rise of quantum computing also marks the dawn of a new era of cybersecurity risks. Quantum computers are expected to be available by 2030 and could pose a significant cybersecurity threat because their unparalleled computing power can disrupt the public key infrastructure (PKI) encryption algorithms that run today’s traditional computing systems. In theory, leveraging quantum computers could allow cybercriminals to bypass PKI-based security controls and steal sensitive data more easily than ever before for ransomware, vandalism, or attacks on critical infrastructure.

Although quantum technology was once considered an unattainable topic , its development has already exceeded initial expectations, making the threat of quantum-driven cyberattacks even more imminent. The urgency of the situation reached new heights in August 2023, when the National Security Agency (NSA), the Cybersecurity and Infrastructure Security Agency (CISA), and the National Institute of Standards and Technology (NIST) issued a joint statement , Call for accelerated migration to post-quantum cryptography (PQC). The three regulators recommend that "all organizations, especially those in the critical infrastructure sector, start planning their migration to PQC standards at the earliest opportunity by developing their quantum security roadmap."

This is because the transition to PQC is difficult to achieve overnight. Most cryptographic products, protocols, and services that rely on common PKI algorithms (RSA, Elliptic Curve Diffie-Hellman [ECDH], and Elliptic Curve Digital Signature Algorithm [ECDSA]) will need to be updated, replaced, or changed to adopt quantum-resistant PQC algorithm. By uniformly adopting Lattice FPGAs, organizations can better accelerate their PQC migration and better prepare for a post-quantum future.

Essentially, PQC migration is a shift from the PKI encryption algorithm to building a resilient mechanism against quantum network attacks. These attacks use a mathematical method called Shor 's algorithm to determine the prime factors of large integers in the PKI algorithm. Current PKI security controls are built around the difficulty of factoring these large integers, making them very vulnerable in a post-quantum environment. Transitioning from PKI algorithms to PQC will provide dual protection against classical and quantum computing attacks.

Existing security standards adhered to by organizations in the critical infrastructure sector do not include PQC algorithms and therefore cannot protect against quantum threats. For example, industrial control systems (ICS) follow the PKI-based IEC 62334-4-2 security standard (Risk Assessment, Policies and Requirements for System Components). In 2022, more than 40% of the world's ICS computers will become targets of traditional network attacks . If these were quantum attacks, the consequences would be severe, far beyond downtime or monetary loss. Considering that nuclear power plants, water treatment facilities, and power grids all rely on ICS computers to operate safely, these attacks could pose a deadly threat. PQC cyber defense is critical to preventing this from happening.

It’s important to note that the post-quantum era is no longer just a distant hypothetical scenario. Any system developed between now and 2025 could have a life cycle of up to 10 years, long enough to survive the advent of a quantum computing environment. This means it's time to move to a PQC-based infrastructure. Integrating Lattice FPGAs into current and future systems can help facilitate PQC migration and prepare for post-quantum threats.

FPGAs allow products to be easily retrofitted to comply with evolving safety standards. With their inherent flexibility, programmability and parallel processing capabilities, they simplify over-the-air firmware updates, allowing developers to proactively optimize embedded hardware using PQC algorithms and patch PKI vulnerabilities in existing systems. Lattice FPGAs integrate these "cryptographic agility" capabilities into real-time hardware root of trust (HRoT) products to provide powerful protection for server platforms and other connected device applications, protecting an organization's overall attack surface. Lattice's latest family of ROT devices feature unique cryptographic agility that enables seamless field updates to implement PQC algorithms. To securely and seamlessly integrate new algorithms and fix vulnerabilities in published cryptographic algorithms, the industry must take cryptographic agility into consideration as it prepares for PQC migration.

Most importantly, it’s important to be proactive rather than reactive when it comes to dealing with attacker tactics, techniques, and procedures (TTPs). As the probability of quantum computing attacks increases, using Lattice FPGAs can help achieve cyber resiliency today and in the post-quantum era. Lattice Timing works closely with leaders in cybersecurity to help our customers comply with PQC specifications as security standards continue to evolve.

To learn more about Lattice’s broad range of FPGAs and solution collections, and how Lattice can help accelerate your PQC migration, please contact our team.