SecAppDev 2024 lecture details
The Quantum threat and Post-Quantum Cryptography (PQC)
We discuss the status of NIST's PQC competition, IETF standards and national agencies' recommendations. We conclude with performance benchmarks and crypto agility challenges.
Tuesday June 4th, 14:00 - 15:30
Room Lemaire
Download handoutsAbstract
Post-Quantum Cryptography (PQC) is a crucial response to the imminent threat posed by quantum computers to conventional cryptographic systems. Following an examination of quantum computing advancements, we discuss NIST's ongoing competition to establish PQC standards, presenting both the first stage winners and the current 4th round candidates. Additionally, we explore the current state of IETF standards and recommendations from national agencies. This session concludes with an overview of performance benchmarks and an exploration of the challenges surrounding cryptographic agility.
Key takeaway
Post-quantum standards are on their way. Implications will be increased complexity and communication and storage overhead. Crypto agility is hard.
Content level
Deep-dive
Target audience
Developers but also architects and management
Prerequisites
Basic knowledge of cryptographic algorithms
Related lectures
Cryptographic algorithms update
Deep-dive lecture by Bart Preneel in room Lemaire
Monday June 3rd, 14:00 - 15:30
An update on the most important cryptographic algorithms and a status on the migration towards post-quantum security.
Key takeaway: Which cryptographic algorithms to use for which tasks.
Practical cryptography with Tink
Deep-dive lecture by Neil Madden in room West Wing
Monday June 3rd, 16:00 - 17:30
Learn how to translate cryptography know-how into robust working code that is easy to review. Avoid common implementation pitfalls by learning how to use the modern Tink cryptographic library.
Key takeaway: Learn how to use Tink to implement cryptographic features and protocols in a robust manner.
A gentle intro to Ethereum and "smart contracts"
Introductory lecture by Tom Van Cutsem in room West Wing
Wednesday June 5th, 14:00 - 15:30
Ethereum is a programmable blockchain, a "world computer" powering decentralized applications. Find out how software for this "world computer" - smart contracts - are written using the Solidity language.
Key takeaway: Learn what programmable blockchains like Ethereum are all about, what kinds of applications they enable and what common pitfalls developers face.