Development PracticesConference45min
Secure Java Applications against Quantum Threats
This talk explains how Java applications can achieve quantum-resistant security by adopting Hybrid Public Key Encryption (HPKE). It covers HPKE concepts, JDK security implementation, and practical integration for secure messaging, enabling developers to protect data against both current and future quantum threats using available Java toolchains.
Ana-Maria MihalceanuOracle
talkDetail.whenAndWhere
Thursday, April 2, 11:45-12:30
Zaal 11
talks.roomOccupancytalks.noOccupancyInfo
While we all get excited imagining the many happy path scenarios using quantum computers, what if such computation power will be employed for compromising the cryptographic algorithms that secure data and communications?
While Y2Q or Q-Day feels distant, bad actors steal currently unreadable encrypted data with the expectation of being able to decrypt in the future.
Java applications can resist classic and quantum attacks by adopting Hybrid Public Key Encryption (HPKE), a new standard that leverages asymmetric KEM, key derivation function (KDF), and authenticated encryption with additional data (AEAD) encryption. This talk covers the connection between these concepts, their implementation in the JDK security and demonstrates how can these be integrated to achieve secure quantum-resistant messaging in Java.
By the end of this talk you will understand how to take advantage of JDK security and toolchain capabilities (keytool, jfr) to fortify your application and withstand the quantum-era threats.
While Y2Q or Q-Day feels distant, bad actors steal currently unreadable encrypted data with the expectation of being able to decrypt in the future.
Java applications can resist classic and quantum attacks by adopting Hybrid Public Key Encryption (HPKE), a new standard that leverages asymmetric KEM, key derivation function (KDF), and authenticated encryption with additional data (AEAD) encryption. This talk covers the connection between these concepts, their implementation in the JDK security and demonstrates how can these be integrated to achieve secure quantum-resistant messaging in Java.
By the end of this talk you will understand how to take advantage of JDK security and toolchain capabilities (keytool, jfr) to fortify your application and withstand the quantum-era threats.
Ana-Maria Mihalceanu
Ana is a Java Champion Alumni, Developer Advocate for the Java Platform Group at Oracle, guest author of the book "DevOps tools for Java Developers", and a constant adopter of challenging technical scenarios involving Java-based frameworks and multiple cloud providers. She actively supports technical communities' growth through knowledge sharing and enjoys curating content for conferences as a program committee member. To learn more about/from her, follow her on Twitter @ammbra1508.
talkDetail.shareFeedback
talkDetail.feedbackNotYetAvailable
talkDetail.feedbackAvailableAfterStart
talkDetail.signInRequired
talkDetail.signInToFeedbackDescription
occupancy.title
occupancy.votingNotYetAvailable
occupancy.votingAvailableBeforeStart
talkDetail.signInRequired
occupancy.signInToVoteDescription
comments.speakerNotEnabledComments