PQC Hybrid Certificates Benchmarking

With the rise of powerful new quantum computers, the digital locks we currently use to protect our online information, like banking details and private messages, could soon be broken. Systems like RSA and ECDSA, which are common today, might not stand a chance against quantum attacks. To stay ahead of the game, experts at the U.S. National Institute of Standards and Technology (NIST) have chosen new types of digital locks, known as “post-quantum” algorithms. Names like CRYSTALS-Dilithium, Falcon, and SPHINCS+ may sound futuristic—and they are—but they’re also much bulkier than the old systems. This makes them harder to plug into the digital infrastructure we already use, especially the X.509 certificates that help secure websites.

One proposed solution is to use hybrid certificates, which mix old and new security systems, sort of like wearing both a seatbelt and an airbag for added protection during the transition. While many versions of hybrid certificates have been suggested, no one has really tested them side by side to see how they perform or how they might affect things like secure website connections.

Faculty Supervisor:

Pierre-Martin Tardif

Student:

Partner:

Entrust

Discipline:

Computer science

Sector:

Professional, scientific and technical services

University:

Université de Sherbrooke

Program: