惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Jina AI
Jina AI
宝玉的分享
宝玉的分享
Last Week in AI
Last Week in AI
Help Net Security
Help Net Security
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
人人都是产品经理
人人都是产品经理
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
GbyAI
GbyAI
博客园_首页
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
MongoDB | Blog
MongoDB | Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
L
LINUX DO - 最新话题
PCI Perspectives
PCI Perspectives
博客园 - 三生石上(FineUI控件)
V2EX - 技术
V2EX - 技术
Spread Privacy
Spread Privacy
T
Tor Project blog
量子位
阮一峰的网络日志
阮一峰的网络日志
S
SegmentFault 最新的问题
小众软件
小众软件
博客园 - 叶小钗
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Blog — PlanetScale
Blog — PlanetScale
H
Help Net Security
Y
Y Combinator Blog
N
News | PayPal Newsroom
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
T
Tenable Blog
Scott Helme
Scott Helme
G
GRAHAM CLULEY
大猫的无限游戏
大猫的无限游戏
aimingoo的专栏
aimingoo的专栏
IT之家
IT之家
Schneier on Security
Schneier on Security
F
Fortinet All Blogs
Martin Fowler
Martin Fowler
T
Threat Research - Cisco Blogs
博客园 - 司徒正美
Application and Cybersecurity Blog
Application and Cybersecurity Blog
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
Attack and Defense Labs
Attack and Defense Labs
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
The Last Watchdog
The Last Watchdog
L
LangChain Blog
C
Check Point Blog
Google Online Security Blog
Google Online Security Blog
V
Visual Studio Blog
Latest news
Latest news

MeriTalk

Eliminating Silos in IT/OT Cybersecurity Is a Funding Challenge, Not a Technical One The FedRAMP High Supply Crisis Is a Federal Security Problem – Not a Procurement Footnote How More Tightly Focused Software Development Initiatives Will Unlock Innovation Across Government Transforming Federal Cybersecurity Through Private Sector Innovation Evolving Zero Trust and Embedded AI – Federal Government Cybersecurity Predictions for 2026 Unlocking AI’s Potential in High-Assurance Environments Accelerate Agentic AI in the Federal Government: Top Takeaways Why Congress Must Reauthorize the Technology Modernization Fund Make Cybersecurity a Key Ingredient of Modernization How Spectro Cloud’s PaletteAI Secure helps agencies scale AI securely, compliantly, and confidently Fix the Foundation: How Hybrid Cloud and Trusted Data Enable Government AI New Google Workspace Cost-Saving Offer Available for U.S. Federal Government Reinventing FedRAMP in the Age of AI Balancing Security and Efficiency: The Federal IT Dilemma in the AI Era Meeting Evolving State and Local Cyber Threats AI Is the Solution to Stop AI Data Theft Enhancing U.S. Government Operations with AI and Human-Centered Design How FinOps Can Help Agencies Slash Cloud Costs in 5 Steps Improving Citizen and Federal Employee Experience with Virtual AI Assistants Strategies for Securing the Federal Supply Chain Reframing the U.S. Government’s Approach to Cybersecurity Oversight Three Steps Agencies Can Take to Meet Government’s AI Requirements The Impact of NIST’s PQC Standardization on the Federal Cybersecurity Ecosystem Generative AI is Revolutionizing Federal Government Operations NIST’s new PQC Algorithms and What They Mean for Federal Agencies Addressing the U.S. Quantum Labor Shortage Before It’s Too Late How a Community Vigil Approach and Secure by Design are Critical to Software Cybersecurity Addressing the Talent Shortage: How Digital Government Improves Satisfaction, Retention Here’s What We Can Learn (and Do) About Cybercrime from FBI’s Latest Internet Crime Report Implementing AI Assurance Safeguards Before OMB’s December Deadline The Next AI Wave: Quantum AI CDM’s Evolution to Non-Traditional Technology: Why Now and How Will it Succeed? Customer Expectations Require Agencies to Raise the Bar on Customer Experience, Report Shows Applying for Government Benefits Shouldn’t Be Difficult When It Comes to Identity Verification Four Federal Software Supply Chain Security Trends to Watch FedRAMP Baseline Transition Points to OSCAL-Native Tools What Zero Trust Means for Modern Government: Best Practices for Key Tenets Four Ways to Handle the IT Funding Crunch Agencies Need to Get Creative to Fill the Cyber Workforce Gap Customer Identity trends report shows control trumps convenience Federal Agencies Making Strides Toward Sustainability and Climate Action Executive Order 14028 | Improving the Nation’s Cybersecurity Depends on Data | All Data is Security Data Applying Geospatial Intelligence, AI/ML to Climate Change Challenge My Cup of IT: Angry at Arthritis, Hunting for Cures How the Federal Government Can Help Combat a Fragmented Internet Accelerating Cybersecurity for US Critical Infrastructure Getting in on the Ground Floor of the ‘New Observability’ Comply-to-Connect is Key to Zero Trust for DoD How Will Upcoming Cryptocurrency Regulations Affect Industry? My Cup of IT: Cup Cake for Kushner? Launching a New Era of Government Cloud Security Managing IT Complexity in Federal Agencies Agencies Must Modernize Zero Trust Approaches to Achieve Optimal Protection Five Essential Metrics for Measuring Federal Government CX Unlocking the Benefits of 5G and Beyond The Federal Factory of the Future: How AI is Transforming Manufacturing The Quantum Impact on Cyber How Next-Gen Computers Will Transform What’s Possible for Federal Government Agencies Must Take an Authentic Approach to Synthetic Data Biometrics and Privacy: Finding the Perfect Middle Ground Two-Way Street: Why Officials and Constituents Are Equally Responsible for Securing the Midterms The “Programmable World” Will Bring the Best of the Virtual World Into the Physical One Cyberattacks are a Common Occurrence and the Costs are Higher Than Ever Increasing Equity Through Data and Customer Experience The AI Edge: Why Edge Computing and AI Strategies Must Be Complementary How Metaverses and Web3 can Reshape Government Four Emerging Technology Trends set to Impact Government Most 5G Enables AI at the Edge Plugging Cyber Holes in Federal Acquisition Resilient Critical Infrastructure Starts with Zero Trust The Evolution of Government Tech Procurement Under CMMC 2.0 Zero Trust Requires Continuous, Tested Security for Federal Agencies How Multi-INT Fusion Accelerates Mission Intelligence for Real-Time Decision Advantage Three Things to Consider for Responsible AI in Government Legislation, White House Orders Show Agencies Opportunity for Hybrid Cloud Creating an Effective Framework for DoD’s Software Factories Realizing Upsides for Digital Security in the Hybrid Workplace A Future With AI and ML: The Power of Workforce Education Five Tips to Begin MFA Integration and Embrace Zero Trust The Vital Intersection Between Equity and Digital Transformation Equity as a Platform: Applying a New Mindset to Scale Innovation Harnessing the Right Data for Evidence-Based Equity From EO to Action: Human Factors of Enabling a Cyber Safety Review Board For Equity in Government Services, It’s Time to Change the Paradigm Critical Questions to Ask When Considering Explainable AI (XAI) for Your Federal Agency The Telework Model for Government: COVID Lessons for Building an Effective Workforce DevSecOps: 4 Steps for Mitigating the Next Cyber Attack in Your Federal IT Environment Better Cyber Hygiene Helps, but Federal Security Needs SASE Lift DoD, Feds Plot Top Cyber, Cloud Priorities for 2022 Cloud-Native Government: How to Transform With Intention DoD and VA Health Networks Face Growing Threat From Medical-Device Vulnerabilities New Federal Cybersecurity Requirements: How Agencies Should Implement a Zero Trust Architecture Protecting Our Nation Through Big Data Analytics Three Ways COVID-19 Altered Federal, State IT Budget Allocations Ransomware is More Than a Cybersecurity Issue From Me to We: Take the Mission Further With Multiparty Systems Anywhere, Everywhere: Integrating Your Virtual Workplace ‘I, Technologist’: Empowering Innovators in the Federal Workforce Mirrored World: Digital Twins Report for Duty Across Government Stack Strategically: Rearchitecting Government for What’s Next
Will Quantum Computing Weaken or Strengthen Cybersecurity of Federal Systems?
MeriTalk Sta · 2025-04-14 · via MeriTalk

By Duncan Jones, Head of Cybersecurity at Quantinuum

The latest quantum computing advances announced by U.S. tech giants and China accelerate both the potential threat and potential promise of this emerging technology. Now is a good time to make the distinction between the term “securing federal systems from quantum computing” and “securing federal systems using quantum computing.” Many of the federal requirements established to date have focused on the former.

As an example, the “Executive Order on Strengthening and Promoting Innovation in the Nation’s Cybersecurity,” issued in January 2025 built on the requirements from National Security Memo-10 (NSM-10) which mandated the use of post-quantum cryptography (PQC) algorithms to protect government systems from the looming quantum threat. The Order mandated a timeline, among other things, for agencies to require cybersecurity products that support PQC in all of its contract solicitations.

But the Order also suggested that the “use of emerging technologies for cybersecurity across executive departments and agencies (agencies) and with the private sector” will be especially “critical to improvement of the Nation’s cybersecurity.”  While actually migrating critical cryptographic systems to PQC may seem far off, quantum-enabled cybersecurity solutions are available today and also advancing rapidly.

In other words, quantum computing has both a sword and shield impact. Let’s not overlook how current quantum cybersecurity solutions can and are already shielding agency systems as we prepare for the impact of the coming quantum sword.

Potential to Weaken 

Many popular encryption schemes rely on the fact that computers can easily multiply large prime numbers but cannot do the reverse – splitting large numbers into their prime factors. However, this assumption only applies to today’s classical computers. Future generations of quantum computers will be able to solve this problem easily, via a process called prime factorization.

According to a recent Deloitte report, “The security of our digital society relies strongly on cryptographic methods. Confidentiality, integrity, and authenticity of data are preserved by various cryptographic algorithms. The security of these algorithms is continually challenged by the evolution of computing power and new attack methods.”

As an example, if not protected, a quantum cyberattack on the Federal Reserve could have grave impacts to its Fedwire network, which facilitates bank-to-bank transactions. According to one report, a hack executed by a quantum computer on macroeconomic financial institutions could render an indirect GDP loss between $2 trillion and $3.3 trillion. Another report estimated $3 trillion in direct and indirect losses.

Due to the potential risks to critical federal systems, and subsequently to U.S. economic and national security, the federal government mandated in 2022 that all agencies prepare to migrate their existing cryptographic systems to quantum cryptography by 2035. Problem solved? Not likely, but a good start.

Potential to Strengthen

While the threat quantum computing poses to existing encryption methods might be the biggest challenge security leaders will ever face, leveraging quantum-based cybersecurity technologies offers significant potential to mitigate risk.

As agencies and vendor partners prepare for the transition to PQC, quantum random number generators (QRNGs) are emerging as a practical and readily deployable solution for hardening existing infrastructure. Unlike their classical counterparts, QRNGs provide truly random numbers – a crucial ingredient for robust encryption – and can be integrated into existing systems today to enhance cryptographic strength.

Quantum key distribution (QKD) remains a technology with substantial potential, though its practical application at scale is still under development. While further research and engineering are needed, monitoring its progress and understanding its potential role alongside PQC and QRNG are crucial factors.

By adopting QRNGs alongside PQC now and continuing to develop and monitor QKD, agencies can construct the strongest possible defense against evolving quantum threats.

The Role of Randomness

According to Deloitte, “Randomness is crucial in cryptography as it is used to create a wide range of security parameters as for instance, cryptographic keys. Without unpredictable randomness, an attacker could guess or predict the values of these parameters, which could compromise the security of data and communications. In other words, using a strong cryptography algorithm with a poor random number source could be the equivalent of using a strong safe but leaving the key hanging at the door.”

The generation of random numbers forms the foundation for nearly all current cryptographic processes, although the formulation of true randomness is impossible using classical hardware. Consequently, experts have linked many malign cyber intrusions and hacks to insufficiently random cryptographic keys.

QRNGs solve this problem by generating truly random numbers for encrypting messages and other cryptographic keys, using inherent quantum-physical randomness.

The Path to Quantum Safety – a Holistic Approach

Some PQC and cybersecurity companies are already introducing QRNGs to their security catalogs. In fact, top-tier network security vendors such as Palo Alto Networks have recently recognized the importance of quantum randomness by releasing an Open API framework for QRNGs, highlighting the role of randomness in an organization’s security stack today and in the quantum future.

While PQC algorithms are essential, federal agencies will benefit from a holistic approach. Just as traditional security employs defense-in-depth, quantum safety can be strengthened through complementary technologies that ensure cryptographic foundations are as strong as possible through provable randomness.

The path to quantum safety requires thoughtful implementation of available technologies while maintaining readiness for emerging solutions. Each element plays a unique role in building a resilient security posture against quantum threats.