Latest news with #SPHINCS+
Yahoo
09-06-2025
- Business
- Yahoo
Commvault Unveils New Post-Quantum Cryptography Capabilities to Help Customers Protect Data from a New Generation of Security Threats
Expanded support for new encryption standards empowers customers to proactively safeguard long-term sensitive data against 'harvest now, decrypt later' quantum threats TINTON FALLS, N.J., June 9, 2025 /PRNewswire/ -- At a time when quantum computing is rapidly emerging as an entirely new security challenge for organizations and governments around the world, Commvault, a leading provider of cyber resilience and data protection solutions for the hybrid cloud and one of the first cyber resilience vendors to support post-quantum cryptography (PQC), today announced enhancements to its PQC capabilities. These advancements are designed to help customers protect their highly sensitive, long-term data from a new generation of imminent but unknown cyber threats, creating an additional layer of support, when needed. Quantum computing uses quantum mechanics to process data and solve complex problems that could take decades with classical computers. However, these advancements bring unprecedented security challenges, along with the potential for threat actors to use quantum computing to decipher and unlock traditional encryption methods. According to the Information Systems Audit and Control Association's (ISACA) Quantum Computing Pulse Poll, 63% of technology and cybersecurity professionals say quantum will increase or shift cybersecurity risks and 50% believe it will present regulatory and compliance challenges1. Now is the time to prepare and take action. Commvault has provided support for quantum-resistant encryption standards, like CRYSTALS-Kyber, CRYSTALS-Dilithium, SPHINCS+, and FALCON, as recommended by the National Institute of Standards and Technology (NIST) since August 2024. It was then that Commvault introduced a cryptographic agility (crypto-agility) framework, enabling its customers, via the Commvault Cloud platform, to address rapidly evolving threats without overhauling their systems. With today's announcement, Commvault has built on that framework by adding support for Hamming Quasi-Cyclic (HQC), a new error correcting code-based algorithm designed to defend against threats like 'harvest now, decrypt later' where adversaries are intercepting encrypted network traffic and storing it for a later time when quantum computers are powerful enough to decrypt it. "The quantum threat isn't theoretical," said Bill O'Connell, Chief Security Officer at Commvault. "We were among the first cyber resilience vendors to address post-quantum computing, and by integrating new algorithms like HQC and advancing our crypto-agility framework, we are providing our customers with the tools to navigate this complex landscape with confidence. Our goal is simple and clear: as quantum computing threats emerge, we intend to help our customers keep their data protected." For industries where long-term data storage is required, like finance and healthcare, Commvault's expanded post-quantum cryptography capabilities provide access to a variety of safeguards that can help fortify network tunnels against quantum-based attacks. With Commvault's Risk Analysis capabilities, customers can discover and classify data to determine where these cryptographic capabilities may be helpful. In addition, Commvault's capabilities are simple to implement, often using a checkbox configuration, making it easy for customers to utilize when needed. The evolving quantum landscape – the need for speedAs investments pour into the quantum field, the time to address emerging threats is shrinking. This makes proactive adoption of post-quantum cryptography critical. "Quantum readiness has become a business imperative, particularly for industries which handle data that remains sensitive for decades. The time when currently encrypted data can be decrypted using quantum technology is closer than many people think," said Phil Goodwin, Research VP, IDC. "Commvault's early adoption of quantum-resistant cryptography and commitment to crypto-agility positions it at the forefront among data protection software vendors in proactively addressing quantum threats. Organizations with sensitive, long-term data need to prepare now for a quantum world." "Commvault has been an invaluable partner in our journey to enhance cyber resilience. Their leadership in adopting post-quantum cryptography, combined with their crypto-agility framework, is exactly what we need to meet stringent government security mandates and protect highly sensitive information from emerging quantum threats," said Jeff Day, Deputy Chief Information Security Officer, Nevada Department of Transportation. "Safeguarding sensitive data is paramount, and the long-term threat of quantum decryption is a significant concern. Commvault's rapid integration of NIST's quantum-resistant standards, particularly HQC, gives us great confidence that our critical information is protected now and well into the future," said Peter Hands, Chief Information Security Officer, British Medical Association. "Their commitment to crypto-agility is important for healthcare organizations like ours." Availability Commvault's post-quantum cryptography capabilities, including support for NIST's HQC algorithm, are immediately available to all Commvault Cloud customers running software version CPR 2024 (11.36) and later, enabling seamless adoption of quantum-resistant protection. To learn more about Commvault's quantum-resistant encryption solutions and how to future-proof your data security strategy, read today's blog, watch our executive videos here and here, and check out the executive brief. About CommvaultCommvault (NASDAQ: CVLT) is the gold standard in cyber resilience, helping more than 100,000 organizations keep data safe and businesses resilient and moving forward. Today, Commvault offers the only cyber resilience platform that combines the best data security and rapid recovery at enterprise scale across any workload, anywhere—at the lowest TCO. 1 ISAC. (2025, April 28). Despite Rising Concerns, 95% of Organizations Lack a Quantum Computing Roadmap, ISACA Finds [press release]. View original content to download multimedia: SOURCE COMMVAULT Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
TECHx
29-03-2025
- Business
- TECHx
NIST Adds SandboxAQ's HQC to Post-Quantum Cryptography Standards
NIST Adds SandboxAQ's HQC to Post-Quantum Cryptography Standards SandboxAQ has announced that the National Institute of Standards and Technology (NIST) has selected HQC (Hamming Quasi-Cyclic) as the fifth algorithm in its suite of post-quantum cryptographic (PQC) standards. HQC, along with ML-KEM, will play a vital role in securing global communications, including the Internet, cellular networks, payment systems, and more. This is a significant milestone for SandboxAQ, marking its second major contribution to NIST's post-quantum standardization efforts. The selection of HQC reinforces the company's position at the forefront of quantum-resistant cryptography. HQC is a key encapsulation mechanism designed to safeguard the exchange of encryption keys against quantum threats. Unlike traditional encryption methods like RSA and elliptic-curve cryptography (ECC), which are vulnerable to quantum attacks, HQC is based on error-correcting codes, offering strong protection against future quantum decryption methods. NIST's final selection report highlights HQC for its security, computational efficiency, and scalability. These qualities make it suitable for widespread use in industries requiring robust encryption. Following multiple rounds of global cryptanalysis and peer review, HQC stood out as a reliable and secure solution. This achievement follows SandboxAQ's previous involvement with SPHINCS+, another PQC algorithm that NIST selected in 2022. With HQC now officially part of NIST's standards, SandboxAQ has contributed to two out of the five critical post-quantum protocols, further establishing its leadership in the cybersecurity space. HQC's development began in the early 2000s, and by the 2010s, SandboxAQ demonstrated that it solved a 40-year-old challenge in code-based key exchanges. Today, HQC is one of just two protocols that protect the confidentiality of nearly all global communications. SandboxAQ's work with NIST reflects the company's ongoing commitment to quantum-safe cryptography. According to Taher Elgamal, senior advisor at SandboxAQ, HQC provides strong protection against quantum decryption methods while maintaining efficiency for real-world applications. 'With both SPHINCS+ and HQC standardized by NIST, SandboxAQ is leading the way in developing PQC solutions for enterprises and governments,' Elgamal stated. Carlos Aguilar Melchor, Chief Cybersecurity Scientist at SandboxAQ, emphasized the importance of HQC in securing the future of global communications. 'HQC is a key part of the transition to a quantum-safe world, and its inclusion in NIST's standards is a win for global security,' he said. In addition to its contributions to cryptographic standards, SandboxAQ offers AQtive Guard, a cryptography management solution that provides real-time visibility and enhanced security. With its unique AI-driven approach, AQtive Guard helps organizations protect their systems against evolving quantum threats. As quantum computing advances, SandboxAQ remains committed to driving innovation in post-quantum cybersecurity and helping organizations stay prepared for the future of encryption.
