Post-Quantum Cryptography Conference

November 7 and 8, 2023 - Amsterdam, The Netherlands | Online

Conference details

On November 7 and 8, 2023 the PKI Consortium hosted their second hybrid Post-Quantum Cryptography (PQC) Conference in Amsterdam, the Netherlands.

The conference welcomed business leaders, industry experts, and representatives from various public and private sectors interested in PQC, offering a diverse program featuring keynote speeches, breakout sessions, panel discussions, and workshops.

The conference was open for anyone interested in preparing for Post-Quantum Cryptography and not limited to the members of the PKI Consortium.

Agenda

The presentations can be downloaded by clicking on the session titles. The recordings are embedded below and can also be accessed via the PKI Consortium’s YouTube channel.

Albert de Ruiter
Policy Authority PKI Dutch Government (Logius)

Albert de Ruiter operates the Policy Authority at Logius, the digital government service organization of the Netherlands. He is also a member of the QvC (Quantum Secure Cryptography) working group of the Dutch government, a board member of HAPKIDO, and a member of the PKI Consortium. Albert is known for introducing the idea of a Post-Quantum Cryptography Conference to the PKI Consortium in 2022.

Alessandro Amadori
Cryptographer at TNO

Alessandro Amadori is a cryptographer currently working at TNO, where his main area of expertise lies in the transition to quantum-safe cryptography. Prior to joining TNO, he earned his PhD from Eindhoven University of Technology, with a research focus on applied cryptography, especially secure implementations.

Andrea Garcia Rodriguez
Lead Digital Policy Analyst at European Policy Centre (EPC)

Andrea G. Rodríguez is Lead Digital Policy Analyst for the EU Digital Agenda at the European Policy Centre (EPC). Before joining the EPC, she was Lead Researcher of the Global Observatory of Urban Artificial Intelligence at CIDOB (Barcelona Centre for International Affairs), where she did research on digital topics and emerging technologies and was Project Manager. She has held advisory positions at the European Cybersecurity Forum (CYBERSEC) as Programme Committee Member, and at NATO as one of the 14 members of the Young Leaders group during the NATO 2030 process. In 2021, she was named "NextGen Leader" at the Young Professionals Summit (YPS) at the Brussels Forum and the Spanish Cybervolunteers Foundation recognised her as one of the 13 Spanish women to follow in technology, an initiative supported by Spain's Ministry of Social Affairs and the 2030 Agenda. Andrea holds an EMJMD degree from the University of Glasgow, Dublin City University, and Charles University in Prague in Security, Intelligence and Strategic Studies (IMSISS) with a specialization in security and technology, and a B.A. (Hons) in International Relations from the Complutense University of Madrid, where she completed two stays abroad at Charles University in Prague and at the National Taiwan University (NTU) in Taipei.

Andreas Hülsing
Associate Professor at Eindhoven University of Technology

Andreas Hülsing is an associate professor leading the Applied and Provable Security (APS) group at Eindhoven University of Technology (TU/e). His research group is currently supported by NWO under the Vidi grant “A solid theory for post-quantum cryptography”. Besides, he is collaborating in the Formosa project to produce machine-checked proofs for high-assurance cryptographic software. His research focuses on post-quantum cryptography – cryptography that resists quantum computer-aided attacks. Andreas’ works range from theoretical works, like how to model quantum attacks or formal security arguments in post-quantum security models, to applied works, like the analysis of side-channel attacks or the development of efficient hash-based signature schemes. In many of my works, Andreas tries to combine the theoretical and the applied perspective. This is especially reflected in my work on standardizing post-quantum cryptography. Previously, Andreas held positions as assistant professor and postdoctoral researcher in the Coding Theory and Cryptology group, working with Tanja Lange in the PQCRYPTO project. Before that he was a postdoctoral researcher in the cryptographic implementations group at TU/e, working with Daniel J. Bernstein. He did his PhD in the cryptography and computer algebra group at TU Darmstadt under the supervision of Johannes Buchmann. Before starting his PhD, he worked as a research fellow at Fraunhofer SIT in Darmstadt. He holds a Diploma in computer science from TU Darmstadt.

Andrew Cheung
President & CEO at 01 Communique Laboratory Inc.

Andrew is the President & CEO of 01 Communique and IronCAP. He holds a B.Sc. (Hon) degree in Computer Science and over 25 years' experience in communications, mobile, and cyber security solutions development, and an early adopter of quantum and the threat to current encryption. Andrew's interest in post-quantum cybersecurity drove him to full time research some 7 years ago long before the Quantum threat was discussed - this led to the birth of IronCAP the world's first proven commercially available quantum-safe data encryption.

Anita Wehmann
Senior Advisor Information Security at the Ministry of the Interior and Kingdom Relations (BZK) of the Netherlands

Anita Wehmann is a sen. policy advisor at the Ministry of the Interior and Kingdom Relations.and initiated the QvC-Rijk program. She is working in the field of Cybersecurity and integrated security since 2009 for several organizations within the Dutch government. It is her passion is to make the Dutch Government more cyber resilient through collaboration.

Anselme Tueno
Cryptography Researcher at SAP

Anselme Tueno is a senior cryptography researcher at SAP Security Research in Karlsruhe, Germany. He holds a Ph.D. degree in applied cryptography under the supervision of Prof. Dr. Stefan Katzenbeisser (University of Passau in Germany) and Prof. Dr. Florian Kerschbaum (University of Waterloo in Canada). His research interest is applied cryptography, particularly, post-quantum crypto and computation on encrypted data using tools such as garbled circuits, secret sharing, homomorphic encryption.

Bas Westerbaan
Research Engineer at Cloudflare

Bas Westerbaan is a mathematician with an interest in quantum computing and cryptography. Currently he is a research engineer at Cloudflare. Previously he worked at PQShield, University College London (UCL) and the digital security group of the Radboud University.

Bill Newhouse
Cybersecurity Engineer & Project Lead, National Cybersecurity Center of Excellence (NCCoE) at NIST

Bill Newhouse is a cybersecurity engineer at the National Cybersecurity Center of Excellence (NCCoE) in the Applied Cybersecurity Division in the Information Technology Laboratory at the National Institute of Standards and Technology (NIST). His work at the NCCoE, NIST's applied cybersecurity lab, pushes for the adoption of functional cybersecurity reference designs built from commercially available technologies provided by project collaborators. These projects include establishing communities of interest with members from industry, academia, and government to gain insight to define project's that address cybersecurity risk faced by the members of the community of interest. NCCoE projects are documented in NIST SP 1800 series publications known as practices guides. He has completed guides addressing cybersecurity risk in the hospitality and retail sectors as well as an early demonstration of derived credentials. He recently completed a cybersecurity collaboration with the U.S. Department of Energy that resulted in a Cybersecurity Framework Profile developed for the Liquefied Natural Gas (LNG) industry and the subsidiary functions that support the overarching liquefaction process, transport, and distribution of LNG. His responsibilities as the financial services sector lead also include identifying ways to include financial services sector use case scenarios in relevant NCCoE projects/practice guides. He is presently leading projects on Data Classification and Migration to Post-Quantum Cryptography.

Blair Canavan
Director, Alliances at Thales

Blair has 30+ years of IT cybersecurity sales, channel, marketing, and business development experience. Blair continuously expanded his cybersecurity and cryptographic expertise starting with Symantec and several cyber start-ups including Chrysalis-ITS (Thales), InfoSec Global, Crypto4A and since September 2019, back with Thales’ Global Technology Alliances team, including the Quantum cryptography portfolio. Blair recently represented the Canadian Forum for Digital Infrastructure Resilience (CFDIR) to articulate the standards and Government guidance at Mobile World Congress (MWC) in 2023. He is an avid presenter, start-up consultant, and IT industry contributor. Blair holds an Hons.BA from the University of Waterloo, and Wilfrid Laurier University, Ontario, Canada.

Bor de Kock
Assistant Professor of Cryptology at NTNU Trondheim

Bor de Kock is an Assistant Professor of Cryptology at NTNU, The Norwegian University of Science and Technology. He has an MSc degree in Computer Science and Engineering from the Eindhoven University of Technology, where he focused on information security, and a PhD on post-quantum key exchange protocols from NTNU. In his research Bor mostly works on key exchange and password-based protocols, while he teaches courses about cryptology and network security for masters’ students.

Chris Hickman
Chief Security Officer at Keyfactor

Chris Hickman is the chief security officer at Keyfactor. As a member of the senior management team, Chris is responsible for establishing & maintaining Keyfactor’s leadership position as a world-class, technical organization with deep security industry expertise. He leads client success initiatives and helps integrate the voice of the customer directly into Keyfactor’s platform and capability set. Prior to joining Keyfactor, Chris was Director of Technical Services at Alacris, an Ottawa based smartcard and certificate management company, which was sold to Microsoft and is now part of the Microsoft Identity Manager product suite. Chris has worked on PKI projects for organizations and firms including NATO, both the U.S. and Canadian Departments of Defense, Fortune 100 banks and financial institutions, manufacturers, insurance companies, telecommunication providers and retailers. He continues to be a trusted resource for enterprises looking to leverage digital certificates within existing portfolios and new product development.

Dustin Moody
Mathematician & Project Lead, Post-Quantum Cryptography at NIST

Dustin Moody is a mathematician in the NIST Computer Security Division. Dustin leads the post-quantum cryptography project at NIST. He received his Ph.D. from the University of Washington in 2009. His area of research deals with elliptic curves and their applications in cryptography.

Elmer Lastdrager
Research Engineer at SIDN Labs

Elmer Lastdrager works as a Research Engineer for SIDN Labs. He is interested in technologies that improve the Internet in the future by making it more transparent, open and privacy friendly.

Francisco José Vial-Prado
Senior Cryptography Engineer at Fortanix

Francisco José Vial-Prado studied at École Polytechnique in Paris, and holds a Ph.D. in Cryptography from the Université Paris-Saclay obtained under supervision of Prof. Louis Goubin. He currently works at Fortanix, where his work and research focuses in applied cryptography, post-quantum cryptography, and secure implementations.

Germain van der Velden
Senior Information Advisor at the Ministry of Infrastructure and Water Management of the Netherlands

Germain van der Velden is an IT advisor at the Ministry of Infrastructure and Watermanagement. He is specialized in cybersecurity, digitalization and digital technologies such as Quantum, AI and Cloud. Germain focuses on topics as quantum technology, post-quantum cryptography, IT strategy and national and economic security. He is also a member of the QvC Rijk team.

Giuseppe Damiano
Director of Product Management at Entrust

Giuseppe is currently the Director of Product Management for the nShield product portfolio offering at Entrust. Giuseppe is a senior expert in developing and managing PKI solutions and infrastructures, data security, and electronic payment systems with more than 30 years of experience. He has a very strong knowledge of IT architecture security, PKI solutions, HSMs, e-procurement, e-invoicing, digital certificates for electronic signatures, electronic seals, and time stamping. During his professional career, as CTO of a Qualified Trust Service Provider, Giuseppe has successfully deployed large-scale projects for major Italian banks, insurance companies, and certification authorities, managing more than 20 million qualified digital certificates using solutions developed in-house. Notable achievements include setting up one of the biggest Qualified Remote Signature infrastructures in Europe, remote signature server solutions capable of hosting large numbers of certificates independently of the HSM capacity, designing HSM solutions to manage data security for electronic payment instruments. Together with one of the most important smart-card manufacturers, he defined and implemented the first prototype of a digital signature system based on a GSM SIM. The project was nominated in 2005 by the European IST-Prize as one of Europe’s most innovative projects of the year. Giuseppe has actively contributed to writing one of the first technical API standards for Cloud Signature. The standard is defined by the Cloud Signature Consortium and adopted by ETSI. He has also actively contributed to writing one of the first proposals for Distributed Ledger Timestamp based on standard PKI formats and blockchain evidence.

Greg Wetmore
Vice President Product Development at Entrust

Greg Wetmore leads the global team responsible for building the products that makeup Entrust Strong Identities, Secure Payments, and Trusted Infrastructure solutions. Greg joined Entrust in 2000 and has held a number of leadership positions on the engineering team over that period. Greg is a key industry advisor and speaks regularly on topics like digital identity, IoT, and post-quantum security. Greg holds an Engineering degree from Queen’s University Kingston, Ontario, Canada.

Gustavo Banegas
Cryptographer at Qualcomm

Gustavo possesses a distinguished academic background, having earned a Ph.D. in Computer Science and Mathematics with a specialization in post-quantum cryptography from Eindhoven University of Technology. Over the past decade, he has diligently dedicated himself to the field of cryptography, focusing particularly on its practical implementation. In recent years, Gustavo's expertise has extended to isogenies and the development of hardware implementations for algorithms such as Kyber, Dilithium, and Falcon. Today, Gustavo holds a senior position as a cryptography engineer at Qualcomm, where he continues to leverage his deep knowledge and practical experience to drive innovation and secure the digital landscape

Ini Kong
PhD researcher Delft University of Technology

Ini Kong is a PhD candidate in the Department of Engineering Systems and Services at the Faculty of Technology, Policy and Management of Delft University of Technology. She holds a master’s degree in Environment and Society at Radboud University and an undergraduate degree with honours in Political Science and Sociology from University of Toronto. Her research interests include digital security in critical infrastructures, transition governance and quantum-safe transition.

Itan Barmes
Team lead at Deloitte

Itan Barmes is the capability lead for Cryptography and Quantum Security at Deloitte Risk Advisory in the Netherlands. Itan and his team focus on cryptography challenges such as key management, public-key infrastructure, implementation of cryptography in infrastructure and software, and mitigating the quantum threat. Itan served as a subject matter expert for the Quantum Security program of the World Economic Forum. Next to client-focused work, Itan frequently writes thought leadership articles on quantum risk and speaks regularly at external events.

Jaime Gómez García
Head of Quantum at Banco Santander

Jaime Gómez García is a recognized expert in telecommunications, blockchain, and quantum technologies, with an extensive professional background within the financial sector. His contributions as a disseminator of quantum technologies and their consequential influence on enterprises, notably within the financial domain, have garnered him recognition as a LinkedIn Quantum Top Voices in 2022 and 2023. Currently, Jaime is Head of Quantum Technologies at Banco Santander, addressing how quantum computing can be leveraged in benefit of the business and how to tackle the quantum threat to cryptography.

Jan Klaussner
Senior Product Architect at D-Trust

Jan Klaussner studied computer science with focus on cryptography and security at TU Dresden till 2003 and worked in the IT-Security industry ever since. He joined his team at D-Trust in 2021 to improve and promote innovative ideas around public key infrastructures and post quantum cryptography.

Jelle Don
Researcher at Centrum Wiskunde & Informatica (CWI)

Jelle Don is a researcher nearing the completion of his PhD-candidacy in the Cryptology Group at Centrum Wiskunde & Informatica (CWI). His expertise is on provable security in the Quantum Random-Oracle Model, but recently he has been diving into the intricacies of post-quantum standardization.

Jeremy King
Regional VP, EMEA at PCI Security Standards Council

Jeremy King leads the Council’s efforts in increasing adoption and awareness of the PCI security standards internationally. In this role, Mr. King works closely with the Council and representatives of its policy-setting executive committee from American Express, Discover, JCB International, MasterCard, UnionPay and Visa, Inc. His chief responsibilities include gathering feedback from the merchant and vendor community, coordinating research and analysis of PCI SSC managed standards through EMEA markets, driving education efforts and Council membership recruitment through active involvement in local and regional events, industry conferences, and meetings with key stakeholders.

Jérôme Plût
ANSSI

Jérôme Plût is a cryptographer at the French cybersecurity agency ANSSI. He is involved in the writing of national cryptographic security requirements and in asymmetric and quantum-safe cryptography.

Joppe Bos
Researcher at NXP Semiconductors

Joppe Bos is a cryptographic researcher in the competence center crypto & security at NXP Semiconductors, Leuven, Belgium. He is the technical lead of the Post-Quantum Cryptography team and the manager of the Crypto Concepts team. Joppe was a post-doctoral researcher in the Cryptography Research Group at Microsoft Research, Redmond, USA and obtained his PhD in the laboratory for cryptologic algorithms at EPFL, Lausanne, Switzerland under supervision of Prof. Arjen Lenstra in 2012. His research focuses on computational number theory and high-performance arithmetic as used in (post-quantum) public-key cryptography. Joppe is a co-author of the post-quantum secure CRYSTALS-Kyber key encapsulation mechanism which has been selected by NIST for standardization.

Kaveh Bashiri
The Federal Office for Information Security (BSI)

Dr. Kaveh Bashiri received his PhD in Mathematics at the University of Bonn. Since 2021 he is a researcher at the cryptography group of the BSI. His main interests are Post-Quantum-Cryptography (especially, hash-based signature schemes) and Quantum Computing.

Lærke Vinther Christiansen
PhD Researcher at Delft University of Technology

Lærke V. Christiansen is PhD Candidate at Delft University of Technology, where she specializes in Technology Governance and Serious Gaming. For her PhD, she is developing a serious game to facilitate the transition from current PKI systems to Quantum-Safe PKI systems. Furthermore, she specializes in collective action within socio-technical systems, which functions as the touchstone for her serious game designs.

Léo Ducas
Researcher at Centrum Wiskunde & Informatica (CWI) and Professor at Leiden University

I have obtained my PhD at ENS Paris, on the topic of Lattice-based Cryptography. After a post-doc at UCSD, I have joined CWI in 2015. I obtained a VENI grant in 2016, and started a tenure-track at CWI in 2017. I am also a Professor of Cryptology at the Mathematical Institute of Leiden University since 2021. I do research on cryptology, and I am more specifically interested in theoretical and practical aspects of lattice-based cryptography. I am involved in the design of fast algorithms for use in lattice-based cryptographic protocols, and in the design of optimized cryptographic protocols for practice. This work includes candidates Quantum-safe protocols for the NIST standardization competition (NewHope, Frodo, Kyber, Dilithium). I am also interested the precise security estimations of lattice problems, the fine tuning of cryptanalytic algorithm and their implementation. In particular I am very active in the development of the FPLLL lattice reduction library, so as to test in practice the latest algorithmic advances, but also to provide useful tools for prototyping new algorithms. I have also contributed to quantum cryptanalysis of lattice-based schemes, showing that not all lattices problems are equally resistant to quantum computing.

Lizzy Polman
Inspector, Dutch Authority for Digital Infrastructure

Lizzy Polman is with the Dutch Authority for Digital Infrastructure (Rijksinspectie Digitale Infrastructuur - RDI) for over 3,5 years, in the function of Inspector for the eIDAS realm. She is also involved with research on Quantum Technology and the possible positive and negative impact on society, the working fields of the RDI, and coherence with existing technology. Her interest lies particularly in the domain of post-quantum cryptography. I have a background in Archaeology, Arabic culture, Crisis management, and IT security.

Lory Thorpe
Quantum Safe Industry Lead at IBM

Driven executive leader with over 20 years senior level global experience in digital transformation and telecommunications with a strong technology, strategy and innovation background (development, architecture, product and solution mgt) in Internet of Things, mobile networks, cloud, security, data analytics/ AI, edge. Expertise in building, integrating and delivering innovative digital products and solutions to market, across Private and Public sector within Enterprise. Leading portfolio and industry efforts on application of Quantum Computing and Quantum Safe in Telecommunications in IBM.

Marc Stevens
Tenured Researcher Cryptology at CWI

Marc Stevens is a tenured researcher at the Cryptology Group at Centrum Wiskunde & Informatica in Amsterdam. He obtained his PhD in 2012 from the Mathematical Institute, Leiden University, for which he was awarded the KHMW (The Royal Holland Society of Sciences) Martinus van Marum prize. He is an expert in cryptanalysis, with emphasis on practical attacks on MD5 and SHA-1. Research highlights are the construction of the MD5 'rogue' Certification Authority (CRYPTO'09 Best Paper Award), the invention of counter-cryptanalysis and the reconstruction of the cryptanalytic attack in the supermalware Flame (CRYPTO'13 Best Young Researcher Paper Award), and the achievement of the first collision for full SHA-1 (CRYPTO'17 Best Paper Award & 2017 Pwnie Award for best cryptologic attack).

Pasqualle Verwoerdt
Board of Directors at Compumatica

Pasqualle Verwoerdt is a member of the Board of Directors of Compumatica and is closely involved with The Quantum Gateway Foundation (an initiative from ABN AMRO, Capgemini, UvA and Compumatica partly funded by Quantum Delta NL) as Steering Group member. Pasqualle has been involved in and interested in encryption and key management since 2014.

Paul van Brouwershaven
Chair PKI Consortium and Director of Technology Compliance at Entrust

Paul van Brouwershaven is Director of Technology Compliance for Entrust’s certification authority, Chair of the PKI Consortium and Vice Chair of the CA/Browser Forum.

Robert Hann
Global Vice President of Sales, Cryptographic Center of Excellence at Entrust

Robert Hann is the Global Vice President of Sales, Center of Excellence at Entrust. He has specialized in PKI, Identity Management and Trust Services for well over two decades, bringing a practical, innovative and commercially sound perspective to these areas. With a broad business-centered focus, he has helped organizations in all sectors to realize their objectives and cost-effectively secure the services that many of us rely upon in our business and personal lives. Prior to other roles at Entrust, he was co-owner of Trustis, a UK based Managed Cryptography Services provider that Entrust acquired in 2017.

Ronald Cramer
Head of the Cryptology Group at CWI

Ronald Cramer (PhD 1997 Amsterdam, MSc 1992 Leiden) is head (and founder) of the Cryptology research group at CWI, Amsterdam, The Netherlands and full professor (chair in cryptology) at the Mathematical Institute, Leiden University, The Netherlands, both since 1 June 2004. Cramer has held prior research positions at ETH Zurich (1997-2000) and at Aarhus University (2000-2004). Since 2008 Cramer is a Visiting Professor at Division of Mathematical Sciences, NTU, Singapore. His prior visiting appointments include ENS (Rue d'Ulm, Paris), CRM (Barcelona), Complutense (Madrid), UPC (Barcelona), as well as an appointment as Visiting Distinguished Cryptographer at NTT Research Labs (Tokio). Cramer's research focuses mostly on foundational and mathematical aspects of cryptology. He is perhaps best known for work on chosen-ciphertext security (Cramer-Shoup encryption, which is also an ISO standard, and invention of hash-proof systems), for work on the introduction and development of Sigma-protocol theory and of such notions as multiplicative secret sharing, arithmetic codices, pseudo-random secret sharing, algebraic manipulation detection codes, and for work on cryptographic protocol theory. Currently, he also focuses on algebraic aspects of lattice-based cryptography. He is an author of the textbook Secure Multi-Party and Secret Sharing (Cambridge, 2015), the first on the topic. Cramer's research focuses mostly on foundational and mathematical aspects of cryptology. He is perhaps best known for work on chosen-ciphertext security (Cramer-Shoup encryption, which is also an ISO standard, and invention of hash-proof systems), for work on the introduction and development of Sigma-protocol theory and of such notions as multiplicative secret sharing, arithmetic codices, pseudo-random secret sharing, algebraic manipulation detection codes, and for work on cryptographic protocol theory. Currently, he also focuses on algebraic aspects of lattice-based cryptography. He is an author of the textbook Secure Multi-Party and Secret Sharing (Cambridge, 2015), the first on the topic. His editorial board memberships include Journal of Cryptology (Springer, 2001-2016), IEEE Transactions on Information Theory (2011-2014), Journal of Mathematical Cryptology (de Gruyter), Designs, Codes and Cryptography (Springer), and Journal of Algebra and Its Applications. He has served as Program Chair for 9th Annual TCC (2012), 11th Annual PKC (2008) and 24th Annual EUROCRYPT (2005). During 2005--2007, he served on the board of directors of the International Association for Cryptologic Research (IACR). During 2009--2015, he served on the advisory board of the Center for Advanced Security Research (CASED), Darmstadt, Germany. He also serves on the advisory board of the Springer Verlag Book Series on Cryptology and Information Security. He also serves or has served on several international Award Committees.

Sandra Guasch Castello
Staff Privacy Engineer at SandboxAQ

Sandra Guasch is a privacy engineer at SandboxAQ, where she works on post-quantum privacy-preserving technologies. She got her PhD from the Polytechnic University of Catalonia (UPC) on voter verifiability applied to electronic voting in 2016. She has worked in different areas of applied cryptography and cybersecurity, including designing electronic voting protocols, security lifecycle management, secure systems design and red teaming.

Simona Samardjiska
Assistant Professor at Digital Security Group, ICIS, Radboud University

Simona Samardjiska is an assistant professor in post-quantum cryptography at the Digital Security group, Radboud University. Her expertise and research interests are in the mathematics of post-quantum cryptography (multivariate and code-based cryptography). She has been actively involved in the current NIST Post-Quantum standardization process as a principal submitter of the second-round candidate MQDSS and one of the submitters of MEDS in the new 4th NIST signature round. She has also contributed to the understanding of the security of several finalists and second-round candidates, by analyzing their classical security and resistance to side-channel attacks. She has published on several IACR conferences, journals and IEEE symposiums, has been a program committee member of various cryptography-related conferences and workshops and is currently an associate editor of the EURASIP Journal on Information Security. She is an activist for gender balance and diversity in computer science.

Stefan van den Berg
Cryptographer at TNO

Stefan van den Berg studied at the university of Eindhoven. He graduated in both masters Information Security Technology and Embedded Systems. Currently he works as a scientist in the department Applied Cryptography and Quantum Algorithms at TNO, the Dutch national organization for applied scientific research. His work focuses on development of various Privacy-Enhancing Technologies, Post-Quantum Cryptography solutions and Quantum Applications.

Stephan Ehlen
The Federal Office for Information Security (BSI)

Dr. Stephan Ehlen holds a Ph.D. in pure mathematics (Number Theory), is a lecturer (Privatdozent) in Mathematics at University of Cologne in Germany and part of the crypto group at the German Federal Office for Information Security (BSI) since 2021. He works on post-quantum cryptography with a focus on lattice-based schemes and leads the BSI project on implementing post-quantum schemes in the open source crypto library Botan.

Thomas Attema
Senior Scientist bij TNO en CWI

In a data-driven society, it is essential to protect private and confidential information. At the same time the cryptography developed to protect information might, in the near future, be broken by quantum computers. Thomas studies novel cryptographic techniques, secure against quantum computers and capable of harnessing data in a privacy-friendly manner.

Tom Patterson
Global Lead, Quantum Security at Accenture

Tom Patterson is the Managing Director for Emerging Technology Security at Accenture, where he drives advancements in artificial intelligence, quantum security, and space-based security around the globe. An acclaimed security expert with three decades of experience across all facets of security, Tom is a published author and keynote speaker providing compelling insight into cybersecurity issues of the day, with a view into a more secure tomorrow. Previously, Tom led efforts with the White House to develop a national ‘moonshot’ toward the cyber defense of the country by the end of this decade. Additionally, he focused on extending trust and security to hundreds of global stakeholders including governments and critical infrastructure companies to protect national borders, transact trillions dollars, deliver energy to millions, secure global air transit, and provide healthcare to entire populations. Tom has served on several public company boards, and advised the FBI, Secret Service, and White House on security issues. Tom also has been appointed to the U.S. President’s National Security Telecommunications Advisory Committee’s (NSTAC) Cyber Moonshot Subcommittee co-lead. Earlier, Tom has run security services for Deloitte in EMEA, and was IBM's Chief eCommerce Strategist. Tom has worked on security for the launch of a nuclear aircraft carrier and space shuttle as well as with the U.S. Government and businesses around the world. The author of Mapping Security, Tom is a frequent guest security expert on TV including CNBC, Fox and CNN, blogs regularly on Twitter @TomTalks, and speaks frequently at TEDx, DoJ, DoD, SIFMA, WEF, Davos, Financial Times, and many other high-level government and industry events around the world.

Tomas Gustavsson
Chief PKI Officer at Keyfactor

Tomas is the co-founder of PrimeKey and Chief PKI Officer of Keyfactor. He has been implementing PKI systems since 1994. As founder and developer of the open-source PKI project EJBCA, contributor to numerous other open source-projects, and member of the board of Open Source Sweden. Currently focusing on helping the world through the post-quantum cryptography migration.

Volker Krummel
Chapter Lead PQC at Utimaco

Dr. Volker Krummel is a distinguished expert in the field of cryptography, currently serving as the Chapter Lead for Post-Quantum Cryptography (PQC) at Utimaco. With a robust educational background, Volker holds a PhD in Cryptography, demonstrating his profound expertise in this specialized field. With over two decades of dedicated experience in Cryptography and IT-Security, Volker has consistently contributed to the advancement of secure digital systems. His extensive knowledge and practical insights have been instrumental in shaping the landscape of cybersecurity. In his current role as Chapter Lead for PQC within the CTO office at Utimaco, Volker Krummel continues to be at the forefront of pioneering efforts to address the evolving challenges posed by quantum computing to cryptographic systems. His leadership and dedication make him a vital asset in the quest for secure and resilient digital infrastructures in the age of quantum computing.

Plenary

Breakout

8:30

Registration

9:00

Opening

Paul van Brouwershaven - Chair PKI Consortium and Director of Technology Compliance at Entrust
Albert de Ruiter - Policy Authority PKI Dutch Government (Logius)

9:30

Status update from NIST

Bill Newhouse - Cybersecurity Engineer & Project Lead, National Cybersecurity Center of Excellence (NCCoE) at NIST
Dustin Moody - Mathematician & Project Lead, Post-Quantum Cryptography at NIST

The U.S. National Institute of Standards and Technology (NIST) has been actively engaged in the solicitation, evaluation, and standardization of quantum-resistant public-key cryptographic algorithms. This year, in August, marked a significant milestone as NIST released a request for comments on the first three draft Federal Information Processing Standards (FIPS) for Post-Quantum Cryptography, following their successful completion of the initial four evaluation rounds.

In this presentation, Mr. Bill Newhouse and Dr. Dustin Moody from NIST will provide a comprehensive update, offering insights into the status of standardization, and the development of practices to ease migration from quantum-vulnerable public-key cryptography to quantum-resistant public-key cryptography.

Furthermore, in his Wednesday presentation, Dr. Dustin Moody will offer a more comprehensive examination of the standardization process for additional signature schemes. The first round of candidates was unveiled in July, and during his presentation, Dr. Moody will illuminate the various approaches taken and the feedback received since their initial announcement.

10:30

Break

11:00

Governance

Preparing the United States for Post-Quantum Cryptography

Bill Newhouse - Cybersecurity Engineer & Project Lead, National Cybersecurity Center of Excellence (NCCoE) at NIST

Considering the rapidly evolving landscape in the realm of quantum computing and its potential implications for cybersecurity, this talk delves into the governance and regulatory framework surrounding Post-Quantum Cryptography in the United States.

The backdrop for this discussion is the enactment of HR 7535, known as the “Quantum Computing Cybersecurity Preparedness Act,” on December 21, 2022, by President Joe Biden. Among its many facets, this legislation underscores the critical role of cryptography in ensuring the national security of the United States and the continued functionality of its economy.

Mr. Bill Newhouse, will provide valuable insights into how the United States is proactively preparing both its federal government and a spectrum of organizations, with a particular focus on those supporting critical infrastructure, for the era of Post-Quantum Cryptography. This presentation highlights the collaborative efforts of key entities, including the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the National Institute of Standards and Technology (NIST), in shaping the governance and regulatory landscape that will govern Post-Quantum Cryptography within the nation.

Algorithms

Lattice-based cryptography

Léo Ducas - Researcher at Centrum Wiskunde & Informatica (CWI) and Professor at Leiden University

Lattices are underlying three out of the four new PQC standards of the NIST: Kyber, Dilithium and Falcon. But what is a lattice? What kind of computation does it involves? What are the challenges related to implementing such schemes?

This talk aims at giving an overview at the principles of lattice-based cryptography, covering both public key encryption and digital signature.

* This is a 40 minute session

11:20

A quantum cybersecurity agenda for Europe

Andrea Garcia Rodriguez - Lead Digital Policy Analyst at European Policy Centre (EPC)

The rapid development of quantum computing creates a new set of challenges for European cybersecurity. In recent years, the European Union has pursued an ambitious cybersecurity agenda but nevertheless, there are still questions about the current framework’s fitness to respond to these new challenges. Particularly worrisome is the advent of quantum attacks on encryption that risk rendering current cryptographic systems obsolete as they are in use. In July 2023, the European Policy Centre, with the support of Quantum Delta NL, published a discussion paper in which it analyses the criticality of preparing for quantum attacks on encryption by the creation of a new quantum cybersecurity agenda that improves technical and political coordination between EU member states and EU bodies and institutions for the transition to post-quantum cryptography and the future use of other quantum-safe technologies.

The European Policy Centre (EPC) is an independent, not-for-profit think tank dedicated to fostering European integration through analysis and debate, supporting and challenging decision-makers at all levels to make informed decisions based on evidence and analysis, and providing a platform for engaging partners, stakeholders and citizens in EU policy-making and in the debate about the future of Europe.

* Continuation of the session about Lattice-based cryptography

11:40

Governance

Post-Quantum Policy and Roadmap of the BSI

Stephan Ehlen - The Federal Office for Information Security (BSI)

In the point of view of the Federal Office for Information Security in Germany (BSI), the question of “if” or “when” there will be quantum computers is no longer paramount. First post-quantum algorithms have been selected by NIST for standardisation and post-quantum cryptography will be used by default. Therefore, the migration to post-quantum cryptography should be pushed forward.

In this presentation, the BSI will expound upon its post-quantum cryptography policy and roadmap. We will emphasize the significance of the migration to post-quantum algorithms in safeguarding critical digital infrastructure, data, and communications. The presentation will elucidate the BSI’s approach, outlining the trajectory of post-quantum cryptography adoption as the default cryptographic standard.

Algorithms

Stateful Hash-Based Signature Schemes

Volker Krummel - Chapter Lead PQC at Utimaco

Stateful hash based signatures provide thorough security and a high level of maturity. However, their requirement of proper handling the state of the key raises concerns for certain use cases. In this talk we want to shade some light on the state handling challenge and how an ideal solution should look like to allow a smooth transition into the PQC era.

* This is a 40 minute session

12:00

Governance

ANSSI plan for post-quantum transition

Jérôme Plût - ANSSI

We will present the plans of ANSSI for transition to quantum-safe cryptography. The existence of the threat of quantum computing requires initiating this transition as soon as possible while ensuring that no security regression is possible. In this spirit, we will explain our three-step roadmap towards quantum-safe algorithms, while listing a few of the technical orientations which can already be determined.

* Continuation of the session about Stateful Hash-Based Signature Schemes

12:20

Governance

Unlocking the Quantum-Resilient Cryptography Strategy for the Dutch central government

Anita Wehmann - Senior Advisor Information Security at the Ministry of the Interior and Kingdom Relations (BZK) of the Netherlands
Germain van der Velden - Senior Information Advisor at the Ministry of Infrastructure and Water Management of the Netherlands

In this presentation, we will delve into the Dutch central governments’ approach to mitigate the risks of quantum technology. Quantum resilient Cryptography governance and regulation can help in mitigating these risks. Positioned at the forefront of quantum-resilient cryptography, a resource was crafted that extends beyond theoretical discussions, offering organizations concrete steps and invaluable advice. Because of our approach this will not only reach the government, but also IT-providers, and (vital) sectors in the Netherlands.

The commitment to fortifying global cybersecurity is exemplified by the Dutch PQC Migration Handbook. This indispensable resource equips organizations with pragmatic guidance on how to proactively mitigate the imminent threat posed by quantum computers to today’s cryptographic systems.

Join us to discover how the Dutch central government is diligently preparing for transition to quantum-resilient cryptographic solutions.

Algorithms

Code-based Cryptography

Simona Samardjiska - Assistant Professor at Digital Security Group, ICIS, Radboud University

Last summer, several lattice-based schemes were chosen for standardization in NIST’s effort to standardize post-quantum cryptography. The process of selecting candidates is however not over, with the focus now being primarily on code-based and multivariate schemes. In this talk I will discuss code-based cryptosystems, their basic design principles, security and challenges. I will focus on the candidates remaining in the NIST competition - the well-established KEM designs, but also the new emerging signature designs.

* This is a 40 minute session

12:40

Governance

Ask the Experts: Global Perspectives on Post-Quantum Cryptography Governance

Bill Newhouse - Cybersecurity Engineer & Project Lead, National Cybersecurity Center of Excellence (NCCoE) at NIST
Andrea Garcia Rodriguez - Lead Digital Policy Analyst at European Policy Centre (EPC)
Stephan Ehlen - The Federal Office for Information Security (BSI)
Jérôme Plût - ANSSI
Anita Wehmann - Senior Advisor Information Security at the Ministry of the Interior and Kingdom Relations (BZK) of the Netherlands
Ronald Cramer Moderator - Head of the Cryptology Group at CWI

An engaging Q&A session on the global Governance and Regulation of Post-Quantum Cryptography. In this panel discussion, esteemed speakers from previous sessions will come together to answer your burning questions and provide a comprehensive overview of how various nations are addressing the impending quantum threat.

Discover how nations are navigating the intricate balance between innovation and security, and gain valuable insights into the diverse regulatory approaches that have emerged. Whether you’re interested in the regulatory intricacies of a specific region or seeking a broader understanding of global efforts, this Q&A session promises to offer a wealth of knowledge and expert perspectives on the Governance and Regulation of Post-Quantum Cryptography worldwide. Don’t miss this opportunity to engage with our panelists and explore the evolving landscape of quantum cybersecurity governance.

* Continuation of the previous session

13:00

Lunch

14:00

What is it going to take to break cryptography with a quantum computer?

Itan Barmes - Team lead at Deloitte

The whole industry is working on standardizing and implementing post-quantum cryptography, in order to mitigate the risk from future quantum computers. One question that is (and will probably remain) unanswered is “when are quantum computers going to be powerful enough to break cryptography?”. At the same time, there are regular press releases about new methods of breaking cryptography in the short term. These publications often cause panic and confusion which is counter-productive to the process of mitigating the quantum risk.

In this presentation we give a high-level description on how quantum algorithms work, and what still needs to happen before such algorithms can be implemented on real hardware. A simple model can be used to make sense of past and future announcements on the nearing moment of the cryptopocalypse (the point at which quantum computing becomes powerful enough to use Shor’s algorithm to crack public-key cryptography). We discuss some of the examples from the past year.

Algorithms

LMS: Lighter, faster key generation

Francisco José Vial-Prado - Senior Cryptography Engineer at Fortanix

The Leighton-Micali Signature (LMS) system is a stateful hash-based signature scheme whose security relies on properties of hash functions, standing at a comfortable security level against attackers in possession of quantum computers. As such, LMS has been standardized by NIST in SP-800-208 and is regarded as a suitable post-quantum signature algorithm in industry.

At its core, generating an LMS private key and obtaining its corresponding public key involves computing an exponential number of hashes and eventually representing large Merkle trees in memory. Moreover, signing with this key later requires recovering subsets of the hashes computed at key generation time. Sequential, high memory approaches to these operations achieve best signature speed, but make LMS key generation prohibitively slow and resource-intensive. While there are a number of hardware-oriented efforts to optimize LMS, some open-source software implementations do not take advantage of known memory trade-offs and opt for small parameter sets.

In this talk, we describe how to make LMS key generation procedure faster with SIMD hashing (by adapting the low-memory iterative algorithm of RFC8554) and recall algorithms that trade off signature speed against succinct representations of private keys in memory.

14:30

Technical

Crunching the Numbers: Post Quantum Algorithm Performance

Tomas Gustavsson - Chief PKI Officer at Keyfactor

Explore the differences between classic and post-quantum algorithms, comparing security levels, sizes and signature speeds. Hardware Security Modules are benchmarked to show real numbers.

Machine-checking post-quantum cryptography

Andreas Hülsing - Associate Professor at Eindhoven University of Technology

Post-quantum cryptography brought a lot of new aspects into cryptography. This includes but is not limited to the facts that schemes are build on new mathematical structures (or rather not widely used in cryptography thus far), security proofs rely on new techniques as well as a deep understanding of said new structures, and implementations have to include and protect new algorithms. In addition, mathematical proofs of security get generally more complex and implementations have to protect against more and more attack vectors. This makes the whole development prone to error. An approach to deal with the added complexity and add reliable security guarantees is the use of computers to machine-check security proofs and implementations. In this talk I will discuss the challenges, and present ongoing projects aiming at machine-checking security proofs and implementations of PQC in EasyCrypt, and Jasmine within the Formosa Crypto consortium.

15:00

Comparing Strategies for Quantum-Safe Cryptography Adoption in Organizations

Jaime Gómez García - Head of Quantum at Banco Santander

Take a practical and insightful look at the recommendations available to organizations for transitioning to quantum-safe cryptography. We’ll explore the primary sources of information that organization leaders should consider, effective messaging strategies to secure executive engagement, and the need to address preconceived notions. Furthermore, we will compare various recommendations to develop a comprehensive transition plan. This talk aims to provide a balanced and informative perspective on the critical topic of quantum-safe cryptography adoption, offering valuable insights for organizations preparing for the post-quantum cybersecurity era.

Leading the Quantum-safe Transition: A Growth Stages Approach

Ini Kong - PhD researcher Delft University of Technology

We recognize that there are many uncertainties on how organizations can overcome quantum-safe transition challenges. By dissecting quantum-safe transition into a series of stages, we use the concept of growth models which allows us to understand how organizations can be arranged and evolve over time toward quantum-safe. During the presentation, we share our research findings on different stages of quantum-safe transition and discuss how organizations across diverse sectors may be involved in these stages of transition.

15:30

Break

16:00

Industry

Birth of the Post-Quantum Internet

Bas Westerbaan - Research Engineer at Cloudflare

We are at a pivotal moment in cybersecurity. Browsers are preparing to (and may already have) enable(d) post-quantum encryption by default to counter the store-now-decrypt-later threat. What once was the subject of futuristic tech demos, will soon become the baseline expectation for security. Encryption is only half the story. Post-quantum certificates are much more challenging to deploy. In this talk, we will take measure of the current state, and the challenges that lay ahead for the public Web and its PKI.

Industry

Update from the GSMA Post Quantum Telco Network Task Force

Lory Thorpe - Quantum Safe Industry Lead at IBM

The GSMA Post Quantum Telco Network Task Force has been dedicated to exploring the implications of Post-Quantum Cryptography (PQC) within the telecommunications space. Our mission extends beyond theoretical discussions, focusing on the tangible impacts on Network Operators and the broader telco supply chain.

The task force is a collaborative effort involving more than 50 companies representing operators, government and the wider Telco supply chain, including over 20 major network operators globally.

Earlier this year, we published a comprehensive Post Quantum Telco Network Impact Assessment Whitepaper. Building on this groundwork, we are now actively developing Quantum Risk Management guidelines tailored specifically to the telecommunications industry. Additionally, we are crafting best practice guidelines that delve into Telco use cases, with a particular emphasis on Public Key Infrastructure (PKI) implications.

In this presentation, we will provide insights into our findings and ongoing initiatives, shedding light on the practical steps being taken to ensure the resilience and security of Telco networks in the age of quantum computing. Our comprehensive approach ensures that the telecommunications industry is well-prepared to face the security challenges and opportunities presented by the quantum era.

16:30

Industry

Post-quantum crypto integration for enterprise applications

Anselme Tueno - Cryptography Researcher at SAP

Quantum computing promises to build computers capable of solving complex problems much faster than today’s computers. This will benefit to many real-world applications such AI, machine learning, optimization problems, complex financial modelling etc. However, upcoming quantum computers will have a crypto-apocalyptic impact on cybersecurity, as they will allow breaking most public-key encryption algorithms in use today. Many applications rely on these encryption algorithms to ensure the security of our sensitive data. To survive in the quantum era, applications must migrate to quantum safe schemes, and preparing for this migration must already start now. In this talk, I will present our work, which was supported by the German Federal Ministry for Economic Affairs and Climate Action (BMWK) in the project Trade-EVs II (FKZ: 01MV20006A), and discuss our experience in integrating post-quantum crypto in enterprise applications. I’ll first describe quantum-safe TLS to secure the communication for PostgreSQL which is an open-source client-server database. Then I’ll continue with hash-based signature for digitally signing software packages with a focus on JarSigner which is an open-source for signing JAR files.

Technical

Building Your PQC Lab: Trust But Verify Your PQC Ecosystem

Blair Canavan - Director, Alliances at Thales

This session will outline the tactical steps for establishing and building or accessing a Post-Quantum Crypto (PQC) test environment. With the increasing volume of ecosystem options available and emerging, now is the time to identify and test against your priority enterprise applications and use cases. This session will identify and highlight some of the key challenges addressing PKI, Code Signing, IoT, and TLS use cases. To summarize, best practices and strategies being implemented in the real-world will be shared to provide attendees with concrete examples for leveraging a PQC test environment.

17:00

Closing remarks for day 1

Paul van Brouwershaven - Chair PKI Consortium and Director of Technology Compliance at Entrust
Albert de Ruiter - Policy Authority PKI Dutch Government (Logius)

17:05

Networking

Albert de Ruiter
Policy Authority PKI Dutch Government (Logius)

Alessandro Amadori
Cryptographer at TNO

Andrea Garcia Rodriguez
Lead Digital Policy Analyst at European Policy Centre (EPC)

Andreas Hülsing
Associate Professor at Eindhoven University of Technology

Andrew Cheung
President & CEO at 01 Communique Laboratory Inc.

Anita Wehmann
Senior Advisor Information Security at the Ministry of the Interior and Kingdom Relations (BZK) of the Netherlands

Anselme Tueno
Cryptography Researcher at SAP

Bas Westerbaan
Research Engineer at Cloudflare

Bill Newhouse
Cybersecurity Engineer & Project Lead, National Cybersecurity Center of Excellence (NCCoE) at NIST

Blair Canavan
Director, Alliances at Thales

Bor de Kock
Assistant Professor of Cryptology at NTNU Trondheim

Chris Hickman
Chief Security Officer at Keyfactor

Dustin Moody
Mathematician & Project Lead, Post-Quantum Cryptography at NIST

Elmer Lastdrager
Research Engineer at SIDN Labs

Elmer Lastdrager works as a Research Engineer for SIDN Labs. He is interested in technologies that improve the Internet in the future by making it more transparent, open and privacy friendly.

Francisco José Vial-Prado
Senior Cryptography Engineer at Fortanix

Germain van der Velden
Senior Information Advisor at the Ministry of Infrastructure and Water Management of the Netherlands

Giuseppe Damiano
Director of Product Management at Entrust

Greg Wetmore
Vice President Product Development at Entrust

Gustavo Banegas
Cryptographer at Qualcomm

Ini Kong
PhD researcher Delft University of Technology

Itan Barmes
Team lead at Deloitte

Jaime Gómez García
Head of Quantum at Banco Santander

Jan Klaussner
Senior Product Architect at D-Trust

Jelle Don
Researcher at Centrum Wiskunde & Informatica (CWI)

Jeremy King
Regional VP, EMEA at PCI Security Standards Council

Jérôme Plût
ANSSI

Joppe Bos
Researcher at NXP Semiconductors

Kaveh Bashiri
The Federal Office for Information Security (BSI)

Lærke Vinther Christiansen
PhD Researcher at Delft University of Technology

Léo Ducas
Researcher at Centrum Wiskunde & Informatica (CWI) and Professor at Leiden University

Lizzy Polman
Inspector, Dutch Authority for Digital Infrastructure

Lory Thorpe
Quantum Safe Industry Lead at IBM

Marc Stevens
Tenured Researcher Cryptology at CWI

Pasqualle Verwoerdt
Board of Directors at Compumatica

Paul van Brouwershaven
Chair PKI Consortium and Director of Technology Compliance at Entrust

Paul van Brouwershaven is Director of Technology Compliance for Entrust’s certification authority, Chair of the PKI Consortium and Vice Chair of the CA/Browser Forum.

Robert Hann
Global Vice President of Sales, Cryptographic Center of Excellence at Entrust

Ronald Cramer
Head of the Cryptology Group at CWI

Sandra Guasch Castello
Staff Privacy Engineer at SandboxAQ

Simona Samardjiska
Assistant Professor at Digital Security Group, ICIS, Radboud University

Stefan van den Berg
Cryptographer at TNO

Stephan Ehlen
The Federal Office for Information Security (BSI)

Thomas Attema
Senior Scientist bij TNO en CWI

Tom Patterson
Global Lead, Quantum Security at Accenture

Tomas Gustavsson
Chief PKI Officer at Keyfactor

Volker Krummel
Chapter Lead PQC at Utimaco

Plenary

Breakout

8:30

Registration

9:00

Hardware

Post-Quantum Crypto: Challenges for Embedded Applications

Joppe Bos - Researcher at NXP Semiconductors

Post-quantum crypto standards are coming: it doesn’t matter if you believe in quantum computers or not. What is the impact on the billions of embedded devices as used in automotive or IoT? Using some typical embedded use-cases we outline the challenges and show some recent solutions in this area.

Technical

A testbed for evaluating post-quantum algorithms for the DNS

Elmer Lastdrager - Research Engineer at SIDN Labs

DNS is an fundamental Internet service that translates human-readable names to IP addresses. It is secured using DNSSEC, an extension that provides authentication and integrity through the use of cryptographic signatures. The inherent limitations of the DNS protocol lead to requirements for the signing algoritms, specifically in terms of key size and signature size. This leads to challenges when deploying post-quantum algoritms. SIDN Labs is setting up a testbed in which developers, network researchers, and DNS operators can experiment with PQC algorithms and DNSSEC. Ultimately, the goal is to evaluate existing post-quantum cryptographic algorithms developers for use in DNS. In this presentation, we discuss some challenges and our progress on setting up a PQC-testbed for DNS.

9:30

Challenges for the Post-Quantum Transition of Mobile Ecosystems

Gustavo Banegas - Cryptographer at Qualcomm

In the fast-approaching post-quantum era, mobile ecosystems, including smartphones, grapple with the formidable task of integrating advanced cryptographic methods. The main challenge lies in the resource-intensive nature of post-quantum cryptography, requiring increased computational power and hardware acceleration. This urgency is driven by the rising threat of quantum computing, making a swift transition to post-quantum cryptography imperative for robust data protection. During the presentation, we will delve into a case study of implementing SPHINCS within the mobile ecosystem, demonstrating that leveraging existing hardware resources is a viable approach but we still need improvements in hardware.

Technical

Coping with post-quantum signatures in the WebPKI

Bas Westerbaan - Research Engineer at Cloudflare

Post-quantum signature algorithms are far from drop-in replacements for the WebPKI. In this technical talk we will first size up the current offering, and the schemes on the horizon. Then we will cover the current work-arounds being discussed to keep the WebPKI running: from smaller changes such as shipping intermediates with browsers, to more ambitious proposals such Merkle Tree Certificates.

10:00

Hardware

Hardware Cryptographic Modules

Blair Canavan - Director, Alliances at Thales
Giuseppe Damiano - Director of Product Management at Entrust
Volker Krummel - Chapter Lead PQC at Utimaco
Marc Stevens Moderator - Tenured Researcher Cryptology at CWI

In this session experts from several hardware vendors will debate about Post-Quantum Cryptography in hardware cryptographic modules, such as HSMs, tokens, smartcards, etc.

[DISCUSSION] Your cryptography will be broken, prepare yourself now!

This interactive session builds upon the presentation “Unlocking the Quantum-Resilient Cryptography Strategy for the Dutch central government” from Tuesday, November 7th. During this session, you can participate in an interactive discussion about the major challenges we face in preparing for the migration to quantum-resilient cryptography.

10:30

Break

11:00

PKI

How to Sell Post-Quantum Readiness by Combining it with a Zero Trust Journey

Robert Hann - Global Vice President of Sales, Cryptographic Center of Excellence at Entrust

Convincing the board of the urgency and importance of PQC can be challenging, especially when there are competing priorities and limited resources.

One possible way to sell PQC to the board is by combining it with a zero trust journey, which is a holistic approach to cybersecurity that assumes no trust in any entity, whether internal or external, and verifies every request and transaction. A zero trust journey can help organizations achieve better security outcomes, such as reducing the attack surface, enhancing visibility and control, and improving compliance and resilience. By aligning PQC with a zero trust journey, organizations can demonstrate how PQC can support and enable their strategic goals, such as digital transformation, innovation, and customer satisfaction.

In this presentation, we will discuss how to leverage the benefits of a zero trust journey to make a compelling case for PQC. We will also share some best practices and tips on how to plan and execute a successful PQC transition that is aligned with a zero trust journey.

A Sign of the Times: The Transition to Quantum Secure Authentication

Sandra Guasch Castello - Staff Privacy Engineer at SandboxAQ

Authentication is one of the most important security goals on the Internet and in the quantum era requires transitioning. Due to the complexity and scale of large systems, post-quantum migration time is often long. We’ll exemplify the challenges and timelines of authentication migrations using FIDO2, enabling the audience to assess the transition time of their own authentication systems.

11:30

PKI

Quantum-safe PKI for the German administration

Kaveh Bashiri - The Federal Office for Information Security (BSI)

The BSI is in control of the root certification authority of the public administration Public Key Infrastructure (PKI). This PKI is an essential element of the German government’s business processes at federal, state and municipal levels. For instance, subscribers of this PKI receive a signed certificate corresponding to a cryptographic key pair, which is used for identification, encryption, the creation of electronic signatures and other applications.

Currently, this PKI is based on RSA-4096. Hence, its security is threatened by the potential development of cryptographically relevant quantum computers. In order to address this threat, a full migration to a PKI based on quantum-safe cryptographic primitives has to be carried out.

Due to the variety of use-cases within this PKI, a number of technical requirements concerning performance, security and interoperability have to be taken into account in this migration. The goal of the talk is to discuss these requirements in detail and to present several concepts and possible solutions. In particular, we argue that a parallelized migration approach is essential in order to ensure constant availability of the system. Moreover, we discuss why standardized, stateful hash-based signature schemes such as XMSS or LMS are promising candidates for the root-CA-level in the PKI hierarchy.

Quantum Resistance through Symmetric Key Cryptography

Pasqualle Verwoerdt - Board of Directors at Compumatica

Symmetric encryption algorithms, such as AES256, are already considered to be post-quantum secure, meaning that they are resistant to attack by quantum computers. This fact is often overlooked in discussions about post-quantum cryptography, but it is important to remember that symmetric encryption can be used to protect data even if quantum computers become powerful enough to break asymmetric encryption algorithms. In this presentation we will explore how symmetric encryption algorithms can be used to protect existing asymmetric implementations.

12:00

PKI

PKI and PQC Strategy for Payment Card Industry

Jeremy King - Regional VP, EMEA at PCI Security Standards Council

In this session you will get an overview of the impact of PQC to PCI Standards (such as ANSI X9, and ISO TC68 standards applicable to PKI in the financial services/payment card industry) and the steps taken to prepare them for a world with Post-Quantum Cryptography.

Symmetric Key Exchange: Lightweight Alternatives for a Post-Quantum IoT

Bor de Kock - Assistant Professor of Cryptology at NTNU Trondheim

Symmetric cryptographic primitives such as AES are simple, efficient and secure – even in a post-quantum world – which makes them interesting for a variation of purposes where we need secure encryption, but with strong constraints to computing power and storage. Traditionally a downside of these algorithms has been their static, long-term keys, making it hard to achieve security properties such as forward secrecy without negotiating a new key every time.

In this talk we will look at a number of protocols that achieve symmetric authenticated key exchange: we propose new methods of key evolution that guarantee full forward secrecy, while also taking care of key synchronization between the involved parties. This makes them very suitable for IoT devices, or other settings where efficient post-quantum cryptography is required.

12:30

PKI

Post-Quantum Cryptography & Trust Services

Lizzy Polman - Inspector, Dutch Authority for Digital Infrastructure

In the evolving landscape of cybersecurity, the emergence of quantum computing poses a substantial threat to the established foundations of trust services, particularly in the context of Qualified Trust Services governed by the eIDAS regulation. Join us for an insightful presentation by the Dutch Authority for Digital Infrastructure, the supervisory authority for Trust Service Providers in the Netherlands.

In this session, we will explore the intricate interplay between Post-Quantum Cryptography and Trust Services, shedding light on the unique challenges posed by the quantum threat. Discover how the eIDAS regulation, which governs Qualified Trust Services, faces significant implications in the quantum era. Gain valuable insights into the proactive strategies and regulatory considerations essential for maintaining trust and security in a quantum-affected landscape.

Join us to navigate the crucial intersection of Post-Quantum Cryptography and Trust Services, as we delve into the Dutch perspective and the broader implications for the global trust ecosystem.

Vulnerabilities of Blockchain Security in the World of Quantum Computing

Andrew Cheung - President & CEO at 01 Communique Laboratory Inc.

Blockchain technology was created to make the storage of data or transactions more secure. It has revolutionized the way we process transactions with improved security, efficiency, and transparency. PKI is the security backbone of blockchain technology to ensure the integrity and trustworthiness of a blockchain network. In the world of cryptocurrencies, private keys are used by the payer to sign and initiate a transaction. It is also used by a validator to sign and assure the world that a transaction has been validated. RSA and ECC are the most commonly used algorithms in the current PKI ecosystem. It has been proven for over 40 years that the private key cannot be reverse engineered back from its public key even using the most powerful super computer today. However, the rapid development of quantum computing is posing security threats to PKI because its excessive power can derive the private key back from its public key. This breaks the backbone of blockchain security because transactions cannot be trusted anymore. In this session we will cover quantum threats to blockchain. We will also demonstrate some practical implementations of PQC that have been performed to convert an existing blockchain network to become quantum-safe.

13:00

Lunch

14:00

Algorithms

NIST standardization of additional signature schemes

Dustin Moody - Mathematician & Project Lead, Post-Quantum Cryptography at NIST

In this presentation, Dr. Dustin Moody, a distinguished expert from the U.S. National Institute of Standards and Technology (NIST), will take you on a deep dive into NIST’s standardization efforts for additional signature schemes.

With the first round of additional signature scheme candidates announced in July, Dr. Moody will shed light on various approaches, including Code-based, Isogeny, Lattice-based, Multivariate, and others. He will also share insights into the feedback received since their initial announcement.

This session promises to provide valuable insights, expert analysis, and a comprehensive understanding of NIST’s ongoing mission to strengthen our digital future against the quantum threat.

Technical

Investigating Post-Quantum Cryptography: building a PQC decision tree for developers

Jelle Don - Researcher at Centrum Wiskunde & Informatica (CWI)
Alessandro Amadori - Cryptographer at TNO

Now that the quantum era is upon us, the question arises: How do you ensure your organisation is “quantum-ready”? With some many candidates and standards to choose from, which algorithms are the right fit for your applications? Join this informative session to explore the development of a comprehensive decision tree by experts from various organizations, including dcypher, TNO, CWI, NXP, Compumatica, Technolution, and Fox-IT.

During this session, we’ll delve into the underlying motivations, thought processes and important takeaways regarding the creation of this decision tree. Gain insights into how to navigate the complexities of post-quantum cryptography and discover a practical tool designed to simplify the decision-making process for quantum-ready organisations.

14:30

Moving toward a Quantum Security Maturity Index

Tom Patterson - Global Lead, Quantum Security at Accenture

Recent advances in quantum computing, factoring algorithms, and hybrid compute approaches toward development of cryptographically relevant quantum computers have made the need to proactively defend our enterprises from this threat an immediate requirement.

Today there are a variety of approaches toward mitigating this risk that are being considered, developed, and deployed around the world. There are leading sectors and trailing sectors in terms of adoption, and there are different algorithms and architectures being relied on in various parts of the world. The constant message from government and industry is to ‘Start Now’ and while that is good, we need to consider what’s next.

With the variety of approaches and levels of maturity, there is a global move to agree upon a common maturity index that would support a common vocabulary, improve quantum defenses, consistently measure progress, share knowledge, and prioritize actions and budgets.

These maturity index levels would cover initial risk and strategy, discovery and inventory, crypto ecosystem, architectures, testing, trials, roll outs, and a steady state managed operation. Included in each of these levels would be reference to approaches such as CBOMs, crypto agility, quantum key distribution, algorithm selection, and more.

This talk will provide an introduction to the maturity index concept for quantum, an update on what else is happening around the world, and provide an invitation to participate in both the definitions, adoptions, and benefits of a globally accepted post quantum maturity index.

Technical

Using quantum-safe hybrid certificates for signing documents

Stefan van den Berg - Cryptographer at TNO

Within the HAPKIDO project we aim to develop a roadmap for hybrid Quantum-Safe Public-Key Infrastructures. Next to TLS many other digital services rely on PKIs for their security; one important example is the electronic signatures on documents, which are standardized in PAdES and have legal value in many countries. One of the services which provides PAdES support is the european Digital Signing Service (DSS). To support the transition to quantum-safe PKIs we have created an extension for DSS, which allows users to use a hybrid certificate to sign and validate a PDF-document. In this presentation we will show our work and explain some of the decisions that we made in the process.

15:00

PKI deployments are as unique as any snowflake; how to build equally flexible PQ migration strategies

Greg Wetmore - Vice President Product Development at Entrust

After TCP/IP, X.509 is probably the most widely deployed technology in modern networking. Use cases of X.509 from the incredibly mainstream to the incredibly niche are as diverse as the Internet itself. This talk will classify different types of PKI deployments according to the types of challenges that they will face during PQ transition including discoverability of the crypto in use (cryptographic bill of materials CBOM), hardware lock-in, which, depending where it is in your network, leads to different types of migration challenges, and the security properties needing during the migration. We will then survey a suite of crypto discovery and transition tools discussing which migration types and security properties they address.

Technical

CRQC and Signatures – no Problem?

Jan Klaussner - Senior Product Architect at D-Trust

While it’s clear that a coming CRQC is a threat to encrypted data already now, its threat potential on today’s signature applications seems not well understood. We will show PKI based use cases where we believe it’s already an issue and needs to be addressed. Also we present hybrid mechanisms that can resolve the issue and discuss their pros and cons.

15:30

Break

16:00

Final Q&A

Paul van Brouwershaven Moderator - Chair PKI Consortium and Director of Technology Compliance at Entrust
Albert de Ruiter Moderator - Policy Authority PKI Dutch Government (Logius)

As we wrap up this two-day conference, our experts will come together to address your queries, offer further insights, and engage in a meaningful exchange of ideas. Whether you seek to delve deeper into specific topics discussed during the conference or have broader inquiries about the quantum landscape, this session is your opportunity to connect with the experts who have shared their wisdom and expertise over the past two days.

Join us for a collaborative and enlightening Q&A session that tries to provide clarity, foster discussion, and leave you with a comprehensive understanding of the quantum computing and cryptography landscape. Don’t miss this final chance to engage with our speakers and conference chairs in a vibrant exchange of knowledge.

16:30

Recap: Unveiling Insights - A Two-Day Conference Retrospective

Chris Hickman - Chief Security Officer at Keyfactor
Greg Wetmore - Vice President Product Development at Entrust
Jelle Don - Researcher at Centrum Wiskunde & Informatica (CWI)
Marc Stevens - Tenured Researcher Cryptology at CWI
Ronald Cramer - Head of the Cryptology Group at CWI
Thomas Attema - Senior Scientist bij TNO en CWI
Tomas Gustavsson - Chief PKI Officer at Keyfactor
Paul van Brouwershaven Moderator - Chair PKI Consortium and Director of Technology Compliance at Entrust
Albert de Ruiter Moderator - Policy Authority PKI Dutch Government (Logius)

As our two-day conference journey draws to a close, join us for a captivating recap session where our chairs will guide you through a comprehensive review of the insights, revelations, and pivotal moments that have unfolded throughout this event.

In this engaging retrospective, we will revisit the highlights, key takeaways, and thought-provoking discussions that have enriched our understanding of the quantum landscape. Our conference chairs will synthesize the wealth of knowledge shared by our esteemed presenters, encapsulating the essence of their presentations and the responses to your insightful questions.

This recap promises to be a valuable opportunity to distill the essence of this conference, offering a holistic perspective on the critical issues, emerging trends, and future directions in the field of quantum computing and cryptography.

17:00

Closing remarks

Paul van Brouwershaven - Chair PKI Consortium and Director of Technology Compliance at Entrust
Albert de Ruiter - Policy Authority PKI Dutch Government (Logius)

17:05

Networking

This conference would not be possible without the organizational support of the Post-Quantum Cryptography Working Group and in particular the following organizations:

For more information on this conference, contact the PKI Consortium at [email protected]

Post-Quantum Cryptography Conference

Conference details

Sponsors

Sponsor the next conference

Agenda