IIESoc

Many of the public-key cryptographic standards we use today will be vulnerable to attacks from a large-scale quantum computer. To address this threat, NIST initiated a rigorous process in 2016 to select quantum-resistant cryptographic algorithms to standardize. This talk will review this NIST PQC standardization effort, which culminated in the publication of the first set of PQC standards in August 2024, with ML-KEM, ML-DSA, and SLH-DSA. The talk will also detail the ongoing standardization of additional signature scheme(s), called "the on-ramp", and the selection of HQC for an additional KEM standard.

​

Crucially, the talk will outline the necessary transition to those new standards. Migration timelines are given in NIST IR 8547, which proposes that currently approved quantum-vulnerable public-key algorithms will be disallowed after 2035. The talk will showcase the efforts of the National Cybersecurity Centre of Excellence's Migration to PQC project, which is helping the community by tackling adoption issues, testing how different systems work together, and providing advice to speed up the global shift to secure cryptography against quantum threats.

 

Quynh Dang is a member of the Cryptographic Technology Group (CTG) at National Institute of Standards and Technology (NIST). He has worked in the field of applied cryptography for 20+ years. His interests include symmetric key, asymmetric key and post-quantum cryptography, and protocol security.

The mobile industry, with its unique characteristics, has been preparing for the transition to quantum-resistant cryptography for many years. As truly global standards, 4G and 5G require algorithms that are universally trusted and secure across all regions. Mobile networks are considered critical infrastructure, heavily regulated, and expected to adhere to government recommendations for migration timelines. However, performance and costs remain high priorities, which differs from national security systems. Hardware like base stations has a long lifecycle, often remaining in service for decades. 5G and 6G standards, heavily reliant on  IETF standards for public-key cryptography, will introduce quantum-resistant algorithms in 2027–2028, and 6G will be quantum-resistant by design. This talk will discuss these challenges and the industry’s plans to overcome them.

 

John is an expert in cryptographic algorithms and security protocols at Ericsson Research in Stockholm, Sweden. His work focuses on applied cryptography, security protocols, privacy, IoT security, post-quantum cryptography, and trade compliance. During his almost 20 years at Ericsson, he has worked with a lot of different technology areas and been active in many security standardization organizations including IETF, IRTF, 3GPP, GSMA, and NIST where he has significantly influenced cryptography, Internet, and cellular security standards. In addition to designing new protocols, John has also found significant attacks on many algorithms and protocols. John holds an MSc in engineering physics from KTH Royal Institute of Technology, Sweden, and an MSc in business administration and economics from Stockholm University.

Messaging applications are widely used to send text messages, multimedia messages, or other forms of communication between individuals or groups. These applications are typically designed for instant messaging and real-time communication.  Some sample messaging applications include: WhatsApp, Facebook Messenger, Telegram, Signal, iMessage, Slack, Microsoft Teams, Skype and others.  These are just a few examples of messaging applications, and there are many others available, each with its own unique features and focus. The choice of messaging app often depends on individual preferences, security concerns, and the specific needs of the user or organization.

 

Several widely-deployed messaging applications have developed their own protocols. While these protocols are similar, no two are close enough to interoperate. As a result, each application vendor has had to maintain their own protocol stack and independently build trust in the quality of the protocol. The goal of the MLS working group is to develop a standard messaging security protocol for human-to-human(s) communication with the above security and deployment properties so that applications can share code, and so that there can be shared validation of the protocol (as there has been with TLS 1.3).

 

This effort is likely to have a major impact on enterprises who use messaging application.  This session will explain the major components of MLS and some of the new security architecture.

​

Nalini started her career doing network design and monitoring for the Chevron network.  She specializes in network performance analysis, measurement, monitoring, tuning, and troubleshooting of large enterprise networks. 

​

One of her specialties is training and network design for IPv6 migration for large enterprises.  Many of the Fortune 1000 level companies as well as the large US government organizations have taken her classes on various networking topics.

​

She has developed network monitoring and diagnostic products which were later marketed by IBM and other software companies.   She received the A.A. Michelson award from the Computer Measurement Group for her contributions to the field.   Nalini is on the Advisory Board of the India Internet Engineering Society (IIESoc).

TLS 1.3, the latest version of the Transport Layer Security protocol, brings forth significant advancements and improvements over its predecessors. In this discussion, we will delve into some of the key changes introduced by TLS 1.3, namely the increased encryption in the handshake process, deprecation of specific key exchange algorithms, and the introduction of new extensions. Additionally, we will explore the implications of TLS 1.3 on network management within enterprises.

​

Nalini started her career doing network design and monitoring for the Chevron network.  She specializes in network performance analysis, measurement, monitoring, tuning, and troubleshooting of large enterprise networks. 

​

One of her specialties is training and network design for IPv6 migration for large enterprises.  Many of the Fortune 1000 level companies as well as the large US government organizations have taken her classes on various networking topics.

​

She has developed network monitoring and diagnostic products which were later marketed by IBM and other software companies.   She received the A.A. Michelson award from the Computer Measurement Group for her contributions to the field.   Nalini is on the Advisory Board of the India Internet Engineering Society (IIESoc).

In this one-hour webinar, we will delve into the world of Transport Layer Security (TLS) and focus on one of its fundamental components, the handshake. TLS is a cryptographic protocol widely used to secure communication over computer networks. By analyzing packet traces, we will demystify the TLS handshake process, step by step, and gain a comprehensive understanding of how it establishes secure connections.

Webinar Agenda:

• The importance of TLS and secure communication

• Overview of the TLS protocol

• Explanation of its role in securing network communications

• Discussion on the importance of the handshake process

• A step-by-step breakdown of the TLS handshake process

• Highlighting key TLS handshake message types and their significance

 

By the end of this webinar, participants will have a solid understanding of the TLS protocol, its handshake mechanism, and the role of packet traces in analyzing and troubleshooting TLS connections. Armed with this knowledge, attendees will be better equipped to secure their network communications and diagnose potential issues in TLS implementations.

​

Nalini started her career doing network design and monitoring for the Chevron network.  She specializes in network performance analysis, measurement, monitoring, tuning, and troubleshooting of large enterprise networks. 

​

One of her specialties is training and network design for IPv6 migration for large enterprises.  Many of the Fortune 1000 level companies as well as the large US government organizations have taken her classes on various networking topics.

​

She has developed network monitoring and diagnostic products which were later marketed by IBM and other software companies.   She received the A.A. Michelson award from the Computer Measurement Group for her contributions to the field.   Nalini is on the Advisory Board of the India Internet Engineering Society (IIESoc).

This webinar is a part of the Cryptography webinar series.

​

Nalini started her career doing network design and monitoring for the Chevron network.  She specializes in network performance analysis, measurement, monitoring, tuning, and troubleshooting of large enterprise networks. 

​

One of her specialties is training and network design for IPv6 migration for large enterprises.  Many of the Fortune 1000 level companies as well as the large US government organizations have taken her classes on various networking topics.

​

She has developed network monitoring and diagnostic products which were later marketed by IBM and other software companies.   She received the A.A. Michelson award from the Computer Measurement Group for her contributions to the field.   Nalini is on the Advisory Board of the India Internet Engineering Society (IIESoc).

The goal for the second security session is to understand some of the terms which are crucial to cryptography.  The explanation will be for those implementing security protocols rather than academics or cryptographers. We will cover:

• DES

• 3DES

• Asymmetric encryption / symmetric encryption

• Elliptic curve cryptography

• Certificate authorities

• Diffie-Hellman key exchange

• Diffie-Hellman groups

• Hashed message authentication code (HMAC)

• Message authentication code (MAC)

• Message digest algorithm 5 (MD5)

• Rivest Shamir Adleman (RSA)

• Secure hash algorithm (SHA)

• X.500 distinguished name

• X.509 digital certificates

 

Nalini started her career doing network design and monitoring for the Chevron network.  She specializes in network performance analysis, measurement, monitoring, tuning, and troubleshooting of large enterprise networks. 

​

One of her specialties is training and network design for IPv6 migration for large enterprises.  Many of the Fortune 1000 level companies as well as the large US government organizations have taken her classes on various networking topics.

​

She has developed network monitoring and diagnostic products which were later marketed by IBM and other software companies.   She received the A.A. Michelson award from the Computer Measurement Group for her contributions to the field.   Nalini is on the Advisory Board of the India Internet Engineering Society (IIESoc).

The goal for the first security session is to understand some of the terms which are crucial to cryptography.  The explanation will be for those implementing security protocols rather than academics or cryptographers. We will cover:

• DES

• 3DES

• Asymmetric encryption / symmetric encryption

• Elliptic curve cryptography

• Certificate authorities

• Diffie-Hellman key exchange

• Diffie-Hellman groups

• Hashed message authentication code (HMAC)

• Message authentication code (MAC)

• Message digest algorithm 5 (MD5)

• Rivest Shamir Adleman (RSA)

• Secure hash algorithm (SHA)

• X.500 distinguished name

• X.509 digital certificates

 

Nalini started her career doing network design and monitoring for the Chevron network.  She specializes in network performance analysis, measurement, monitoring, tuning, and troubleshooting of large enterprise networks. 

​

One of her specialties is training and network design for IPv6 migration for large enterprises.  Many of the Fortune 1000 level companies as well as the large US government organizations have taken her classes on various networking topics.

​

She has developed network monitoring and diagnostic products which were later marketed by IBM and other software companies.   She received the A.A. Michelson award from the Computer Measurement Group for her contributions to the field.   Nalini is on the Advisory Board of the India Internet Engineering Society (IIESoc).