Building post-quantum gear is hard. A new partnership aims to make it easier

A new partnership between a European chipmaker and software firm aims to ease the difficult  task of creating defense systems with encryption strong enough to withstand attacks by tomorrow’s quantum computers.

SEALSQ, which specializes in “quantum-safe” chips, and Airmod, a French company that specializes in secure electronics for aerospace and drones, say they can help companies produce the larger, more energy-intensive software that meets standards for quantum-safe hardware and software environments, as defined by the National Institute of Standards and Technology, or NIST. 

Under a deal announced Monday, the partners will use Airmod’s middleware software to help clients turn “months of complex cryptographic integration into days” by allowing clients to bridge more easily apply software from previous applications into new ones. 

The standards reflect growing concern and certainty among a broad range of computer and security professionals that engineers—most likely in either China or the United States—will announce the development of a quantum computer capable of breaking Shor’s algorithm before 2035. This is the encryption standard that runs at the heart of most of the world’s financial transactions, web surfing, and device-to-device communication (such as drone operation). Whoever wins the race would essentially have a backdoor into private transactions and communications all over the world.

In 2022, China claimed it had already reached that threshold, much to the skepticism of many U.S. national security officials and quantum computing experts from around the world. But China is ahead of the United States in many areas of quantum sensing and computing research; it  has also been exfiltrating encrypted data that could be unlocked after a quantum breakthrough.

The new standards mean that many companies will effectively phase out chips that exist in much common computer hardware, as well as the applications running on that hardware, replacing both with quantum-safe versions—at least, that’s the hope.

“What does it mean to implement the new generation of algorithms? There is a certain urgency for [many businesses to] understand a bit better,” Gweltas Radenac, IoT security business director at SEALSQ, told Defense One in an exclusive interview.

But he pointed out that computer and software applications today are so complex and interconnected that a company that believes it has done all it needs to do to meet new standards may still be vulnerable to side-channel attacks in addition to more direct remote attacks.

A bigger challenge, which the partnership seeks to address, is that the new encryption protocols are much larger than the previous ones. This makes it harder to write applications for them, and the process of designing applications is more energy-intensive.

That has particularly bad ramifications for the emerging defense startup industry focused on the delivery of new drones. Ukraine, the leader in this field, often has to rely on components that are easily procured in large numbers, including chips from China, and needs to design and deploy them quickly in the face of rapidly changing electronic warfare tactics.

Jean-Marc Prichard, head of sales and marketing at Airmod, said the company is trying to address both the high costs of designing quantum-safe algorithms and the larger concern of China’s dominance in many types of chips. This includes many of the less sophisticated ones that are part of connected devices like drones. The company is also looking for ways to move production closer to customers, and can already do so for some production aspects, such as embedding customer-specific data on the chip at a location that meets stronger security requirements.

“So if a U.S. customer wants to have his own data to be injected in the secure chip, we can offer a service where it's done on the U.S. footprint, for instance,” he said.

The partnership news comes as Europe reinvests in its own chip foundries under its own version of a Chips Act, a 2023 effort to “strengthen the semiconductor ecosystem in the EU,” according to the European Commission. The effort accelerated in March, when nine EU members agreed to join the coalition. 

Meanwhile NIST, the preeminent global standards body for computer security, shed key researchers in May and has faced budgetary hurdles even before Donald Trump’s administration took over. Since January, NIST researchers have worried that government cutbacks hurt travel and research budgets, which they worried could reduce U.S. influence in setting international standards.