In our first two posts on the topic of quantum, we defined quantum computing, introduced its implications, and offered a vision of the future. Quantum is a force multiplier across all industries, and the more we understand about it, the better prepared we are for its impacts and developments.
Our third and final post on this topic offers you a one-stop shop of resources to help you keep up with the quantum world. We bring you key websites that offer scientific and technological updates, guidelines for achieving quantum resilience, and a handy checklist for how to build a quantum cybersecurity strategy.
NOW is the time to secure your network, to lock down your critical assets and data, and to ensure your entity’s continuous operations. Bad actors are harvesting data now to decrypt or corrupt later, so the clock is ticking.
News You Can Use: Here’s the Quantum Scoop
Scientific Resources – Quantum Computing Basics
Scientific American is a solid “Go To” for understanding quantum computing, as well as keeping up with developments inside this technological realm. We also recommend Phys.org when it comes to feeding your inner quantum “geek.”
Just like Scientific American, the National Science Foundation (NSF) keeps up with all of the latest advances in quantum computing and their impacts.
Keep the National Institute of Science and Technology (NIST) in your back pocket, and refer back to their site often to find guidance and to keep track of the regulatory conversations that focus on quantum.
When it comes to quantum cryptography and its definitions and implications, we default to the Institute of Electronics and Electrical Engineers (IEEE). Their abstracts offer the deep-dive details to continuously refresh your understanding of this particular aspect of quantum computing.
Last, but NOT least, there is the ever-present knowledge bank and quantum blog offered by IBM. They have a vested interest in this topic, as one of the major global developers of quantum computers.
Achieving Quantum Resilience
Get the Jump on Quantum with this Step-by-Step Guide
- Understand Quantum Threats & Stay Informed: The first step to becoming quantum resilient is to have a solid understanding of the threats posed by quantum computing. This includes understanding how quantum computers work, and how they can potentially break traditional encryption methods. We have outlined this for you in our first two blog posts, and the best resources are listed for you in the section above. DONE!
- Identify Vulnerabilities: Determine which parts of your organization’s infrastructure are susceptible to quantum attacks. This includes anything that relies on public-key cryptography for security, such as secure email, VPNs, and secured websites. IoT systems have become entry points, for example, so this list should be comprehensive, covering IT and OT. NEXT!
- Research Quantum-Resistant Solutions: Look into quantum-resistant security solutions. This includes LinkGuard, which is designed specifically to provide quantum resilience.
- Plan for Migration: Once you’ve identified the vulnerabilities and best available solutions, it’s time to create a detailed plan for transitioning to quantum-resistant security. This should include timelines, resources required, and potential challenges. Make sure that the solutions you have chosen address legacy systems that are particularly vulnerable to quantum cryptography attacks.
- Implement Quantum-Resistant Security Measures: Put your plan into action by implementing quantum-resistant security measures, such as LinkGuard. Incorporate and maintain prevent & protect solutions along with your detect & respond measures.
- Test and Verify: Once your quantum-resistant security measures are in place, test them extensively to ensure they work as expected.
- Maintain and Update: Quantum technology is rapidly evolving, so it’s important to keep your security measures up-to-date. Regularly review the latest advancements in quantum computing and adjust your security measures as necessary.
- Train Your Team: Make sure your team is well-versed in quantum threats and the measures you’ve put in place to combat them. Ongoing training should be part of your organization’s security protocol.
Creating Your Quantum Cybersecurity Strategy – NOW!
A Checklist
The actual steps are easy. It’s collaboration that’s the challenge, but the importance of it cannot be overstated. With diligent teaming, your organization can create a solid quantum cybersecurity strategy in just a few steps. It is imperative that IT and OT work together to address and prioritize every aspect of the plan, and that the C suite executives and Board members embrace and help to dedicate resources to it.
– Identify Your Agile Governance Structure
List the names of those from both IT and OT leadership who will be responsible for maintaining the integrity of the cryptographic infrastructure. List their roles & responsibilities.
– Elevate Awareness Across the Organization
This is the ideal time for your expert “geeks” to share their knowledge. Schedule them to lead Lunch & Learn sessions and to create informative videos to share internally with employees for the purpose of enlightening everyone and transparently sharing your organization’s progress. These are also great opportunities to refresh old tried and true best practices, such as phishing awareness reminders and reviews of cybersecurity solutions sets that your organization already has in place.
– Create Your Risk List
Alongside all IT and OT risks, make sure to highlight quantum cybersecurity risks, and be sure to include all the cryptographic components used in your organization’s network applications and services.
– Draft Your Future Technology SOP
Re-examine your entity’s standard operating procedures manual (SOP) and guidelines for implementing new technologies and reframe them with quantum in mind. Allow for new solutions that align with your cryptographic agility goals.
– Train – Train – Train
Host your own internal training on quantum computing developments. Build professional quantum related certifications into your LMS and recruiting programs to enhance professional development opportunities. IBM offered the very first developer certification, and many colleges and universities offer quantum related programs for various aspects, such as structures of cryptographic algorithms. Check out LinkedIn Learning for sessions like Cloud Quantum Computing Essentials.
Quantum Isn’t Waiting – Neither Should You
In the presentation entitled NSM-10 and the Transition to Quantum Resistant Cryptography, NIST states, “Data secured with classic encryption requiring many years of privacy will have its shelf-life significantly reduced or eliminated.” This substantiates the sense of urgency to work towards quantum resilience today. It’s essential to keep a library of trusted resources handy for continued reference, to build a timeline of goals and actions to achieve quantum resilience, and to craft an agile quantum cybersecurity strategy.
We understand the urgency regarding the world of quantum computing. Our CyberCloak™ capabilities are already quantum resistant, and coming soon. . . . LinkGuard Quantum for quantum resilience.