Researchers from the ACSD and the UCS groups successfully published a paper in the proceedings of the 18th German IT-Security Conference (BSI 18. Deutscher IT-Sicherheitskongress), which was presented by Nouri Alnahawi.
Abstract:
The demand for crypto-agility, although dating back for more than two decades, recently started to increase in the light of the expected post-quantum cryptography (PQC) migration. Nevertheless, it started to evolve into a science on its own. Therefore, it is important to establish a unified definition of the notion, as well as its related aspects, scope, and practical applications. This paper presents a literature survey on crypto-agility and discusses respective development efforts categorized into different areas, including requirements, characteristics, and possible challenges. We explore the need for crypto-agility beyond PQC algorithms and security protocols and shed some light on current solutions, existing automation mechanisms, and best practices in this field. We evaluate the state of readiness for crypto-agility, and offer a discussion on the identified open issues. The results of our survey indicate a need for a comprehensive understanding. Further, more agile design paradigms are required in developing new IT systems, and in refactoring existing ones, in order to realize crypto-agility on a broad scale.
Reference:
Alnahawi, N. ; Schmitt, N. ; Wiesmaier, A. ; Graßmeyer, A. Heinemann T.: On the State of Crypto Agility. In: Tagungsband zum 18. Deutschen IT-Sicherheitskongress. Bd. 18 : SecuMedia Verlags-GmbH, 2022. — Backup Publisher: BSI — ISBN 978-3-922746-84-3, S. 103–126. ePrint: https://eprint.iacr.org/2023/487