
Unprecedented Bidding War Erupts Over Anysphere, Creator of Popular AI Coding Assistant Cursor
Technology News
Zaker Adham
09 November 2024
12 September 2024
|
Zaker Adham
Summary
Summary
Microsoft has recently upgraded its core cryptographic library, SymCrypt, by adding two new encryption algorithms designed to resist quantum computer attacks. These updates, implemented last week, aim to bolster the security of cryptographic functions in both Windows and Linux environments.
SymCrypt, established in 2006, provides developers with essential operations and algorithms for secure encryption, decryption, signing, verification, hashing, and key exchange. It supports federal certification requirements for cryptographic modules used in governmental settings. Despite its name, SymCrypt supports both symmetric and asymmetric algorithms and is integral to Microsoft products and services like Azure, Microsoft 365, Windows, Azure Stack HCI, and Azure Linux. The library ensures cryptographic security for email, cloud storage, web browsing, remote access, and device management.
New Quantum-Resistant Algorithms
The first new algorithm added to SymCrypt is ML-KEM, previously known as CRYSTALS-Kyber. This algorithm, one of three post-quantum standards recently formalized by the National Institute of Standards and Technology (NIST), facilitates key encapsulation, allowing two parties to negotiate a shared secret over a public channel. These shared secrets can then be used with symmetric-key cryptographic operations, which are resistant to Shor's algorithm when keys are sufficiently large.
The second algorithm is XMSS (eXtended Merkle Signature Scheme), recommended by NIST. XMSS is based on stateful hash-based signature schemes and is particularly useful for specific applications like firmware signing, though not suitable for general use.
Microsoft plans to add more post-quantum algorithms to SymCrypt in the coming months, including ML-DSA (a lattice-based digital signature scheme, formerly Dilithium) and SLH-DSA (a stateless hash-based signature scheme, formerly SPHINCS+). Both were recently recognized as NIST standards, known as FIPS 204 and FIPS 205.
Challenges and Future Steps
In a recent post, Microsoft Principal Product Manager Lead Aabha Thipsay highlighted that while post-quantum cryptographic (PQC) algorithms offer promising solutions for future cryptography, they come with trade-offs such as larger key sizes, longer computation times, and increased bandwidth requirements. Implementing PQC in real-world applications necessitates careful optimization and integration with existing systems and standards.
Technology News
Zaker Adham
09 November 2024
Technology News
Zaker Adham
09 November 2024
Technology News
Zaker Adham
09 November 2024
Technology News
Zaker Adham
07 November 2024