Quantum-strengthened cryptography tech implemented in Windows 11 update
Get Ready for Quantum-Safe Windows 11:
Microsoft is taking a proactive approach to combat the imminent cybersecurity threat posed by quantum computers. In a recent blog post, the tech giant announced that the latest Windows 11 Canary builds now support post-quantum cryptography, aided by the inclusion of PQC algorithms such as ML-KEM and ML-DSA. This update aims to secure Windows 11 against quantum computers' suspected ability to crack traditional encryption algorithms.
Microsoft's symmetrical cryptography library, SymCrypt, has been upgraded to incorporate ML-KEM and ML-DSA, offering improved protection against the "harvest now, decrypt later" threat. This potential threat involves attackers amassing data now, only to break through the encryption once quantum computers are powerful enough in the future.
ML-DSA is particularly useful in scenarios requiring identity verification and the preservation of digital signatures' integrity.
PQC (post-quantum cryptography) algorithms, designed to counter quantum computer attacks, are known for their resistance to both traditional and quantum computers. However, these algorithms demand more from hardware, including larger key sizes, increased compute times, and enhanced bandwidth compared to classical cryptography algorithms.
Despite the challenges, NIST has selected PQC algorithms for their exceptional security, performance, and compatibility, making them suitable for widespread use. Microsoft isn't alone in embracing these advanced encryption techniques, as PQC is also integrated into multiple industry standards like TLS, SSH, and IPSec.
With PQC embedded in SymCrypt, Microsoft is fortifying the Windows 11 ecosystem—and its other products—against future quantum computer threats. Although this technology is currently being tested in Windows 11, it will eventually extend to Linux as well. The timeline for a BitLocker update is unclear, given the complexity and hardware requirements involved.
Last year, Chinese researchers were successful in using a D-Wave quantum computer to crack military-grade encryption, demonstrating that these devices already possess sufficient power to break complex classical cryptography. It's vital that our digital infrastructure keeps pace with these advancements to maintain security.
Stay informed about the latest developments in the world of tech by subscribing to the Tom's Hardware newsletter. Follow Tom's Hardware on Google News to stay updated on news, analysis, and reviews, making sure to click the 'Follow' button.
Sources: 1-Tom's Hardware, 2-National Institute of Standards and Technology (NIST), 3-Microsoft Tech Community, 4-SymCrypt GitHub, 5-Microsoft Edge Blog.
Key Insights:
- Microsoft has added support for post-quantum cryptography in Windows 11, bolstering the system's defenses against future quantum computer threats.
- Incorporated algorithms include ML-KEM and ML-DSA, which are built on NIST-standardized PQC standards and designed for quantum resistance.
- The rollout of PQC support in Windows is slowly progressing, with general availability expected for Insider builds later this year.
- A hybrid approach is being implemented, combining classical and post-quantum techniques for the easy transition between mature and emerging encryption standards.
- The Linux community is also working to integrate PQC support through SymCrypt-OpenSSL 1.9.0, with further rollouts and standardization expected in the coming years.
Technology and data-and-cloud-computing are integral parts of Microsoft's strategy to secure Windows 11 from quantum computer threats. The company is leveraging advanced post-quantum cryptography algorithms like ML-KEM and ML-DSA, developed to resist both traditional and quantum computers, in its SymCrypt library as a response to the evolving cybersecurity landscape.
