Risk Identification/Classification/Mitigation

Quantum resilient security key implementation unveiled by Google

Google has strengthened its OpenSK open-source security key program with the introduction of the first quantum resilient FIDO2 security key implementation leveraging a unique ECC/Dilithium hybrid signature schema that could defend against standard and quantum attacks, The Hacker News reports. Only 20 KB of memory is required by Google's FIDO2 security key implementation co-developed with ETH Zurich, which combines both Elliptic Curve Digital Signature Algorithm and the Dilithium quantum-resistant signature algorithm. Such an implementation was unveiled as part of Google's efforts to transition to cryptographic algorithms that could better combat quantum attacks and comes after the firm disclosed plans to include quantum-resistant encryption algorithm support in Chrome 116. "Fortunately, with the recent standardization of public key quantum resilient cryptography including the Dilithium algorithm, we now have a clear path to secure security keys against quantum attacks," said Google, which is expecting the standardization of the implementation in the FIDO2 key specification.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.