SecurityConference50min
Secure Java Applications against Quantum Threats
This talk addresses quantum-era threats to cryptography, highlighting risks from future quantum attacks on encrypted data. It introduces quantum-resistant security techniques—KEM, KDF, AEAD—and demonstrates their implementation in Java using JDK security features and tools, enabling developers to build secure, quantum-resistant applications.
Ana-Maria MihalceanuOracle
talkDetail.whenAndWhere
Wednesday, November 12, 11:50-12:40
Imlil
While we all get excited imagining the many happy path scenarios using quantum computers, what if such computation power will be employed for compromising the cryptographic algorithms that secure data and communications?
While Y2Q or Q-Day feels distant, bad actors steal currently unreadable encrypted data with the expectation of being able to decrypt in the future.
Applications can resist classic and quantum attacks by looking into adopting asymmetric Key Encapsulation Mechanism (KEM), key derivation function (KDF), and authenticated encryption with additional data (AEAD) encryption. This talk covers the connection between these concepts, their implementation in the JDK security and demonstrates how can these be integrated to achieve secure quantum-resistant messaging in Java.
By the end of this talk you will understand how to take advantage of JDK security and toolchain capabilities (keytool, jfr) to fortify your application and withstand the quantum-era threats.
While Y2Q or Q-Day feels distant, bad actors steal currently unreadable encrypted data with the expectation of being able to decrypt in the future.
Applications can resist classic and quantum attacks by looking into adopting asymmetric Key Encapsulation Mechanism (KEM), key derivation function (KDF), and authenticated encryption with additional data (AEAD) encryption. This talk covers the connection between these concepts, their implementation in the JDK security and demonstrates how can these be integrated to achieve secure quantum-resistant messaging in Java.
By the end of this talk you will understand how to take advantage of JDK security and toolchain capabilities (keytool, jfr) to fortify your application and withstand the quantum-era threats.
Ana-Maria Mihalceanu
Ana is a Java Champion Alumni, Developer Advocate for the Java Platform Group at Oracle, guest author of the book "DevOps tools for Java Developers", and a constant adopter of challenging technical scenarios involving Java-based frameworks and multiple cloud providers. She actively supports technical communities' growth through knowledge sharing and enjoys curating content for conferences as a program committee member. To learn more about/from her, follow her on Twitter @ammbra1508.
comments.speakerNotEnabledComments