Researchers from the Applied Cyber Security Darmstadt (ACSD) and User Center Security (UCS) research group successfully published a paper at the European Interdisciplinary Cybersecurity Conference (EICC) 2024 in Xanthi, Greece. The paper was presented by Nouri Alnahawi at the Democritus University of Thrace, Xanthi, Greece were the conference was held on June 6-7 2024.
Abstract:
Organizations have to plan on migrating to quantum-resilient cryptographic measures, also known as PQC. However, this is a difficult task, and to the best of our knowledge, there is no generalized approach to manage such a complex migration for cryptography used in IT systems that explicitly integrates into organizations’ steering mechanisms and control systems. We present PMMP, a risk-based process for managing the migration of organizations from classic cryptography to PQC and establishing crypto-agility. Having completed the initial design phase, as well as a theoretical evaluation, we now intend to promote PMMP. Practitioners are encouraged to join the effort in order to enable a comprehensive practical evaluation and further development.
Reference:
Nils Von Nethen, Alexander Wiesmaier, Nouri Alnahawi, and Johanna Henrich. 2024. PMMP-PQC Migration Management Process. In Proceedings of the 2024 European Interdisciplinary Cybersecurity Conference (EICC '24). Association for Computing Machinery, New York, NY, USA, 144–154. https://doi.org/10.1145/3655693.3655719