Towards Quantum-Resistant Trusted Computing: Architectures for Post-Quantum Integrity Verification Techniques

TL;DR

This paper analyzes existing trust techniques and proposes architectures for quantum-resistant trusted computing, emphasizing the urgent need to transition firmware and trust mechanisms to post-quantum cryptography to ensure future security.

Contribution

It provides a comprehensive analysis of trust techniques' transition to post-quantum cryptography and proposes architectures incorporating quantum-resistant algorithms for trusted computing.

Findings

Current trust techniques are vulnerable to quantum attacks.

Post-Quantum Cryptography (PQC) is essential for future trust architectures.

Proposed architectures integrate PQC to enhance quantum resistance.

Abstract

Trust is the core building block of secure systems, and it is enforced through methods to ensure that a specific system is properly configured and works as expected. In this context, a Root of Trust (RoT) establishes a trusted environment, where both data and code are authenticated via a digital signature based on asymmetric cryptography, which is vulnerable to the threat posed by Quantum Computers (QCs). Firmware, being the first layer of trusted software, faces unique risks due to its longevity and difficult update. The transition of firmware protection to Post-Quantum Cryptography (PQC) is urgent, since it reduces the risk derived from exposing all computing and network devices to quantum-based attacks. This paper offers an analysis of the most common trust techniques and their roadmap towards a Post-Quantum (PQ) world, by investigating the current status of PQC and the challenges posed by such algorithms in existing Trusted Computing (TC) solutions from an integration perspective. Furthermore, this paper proposes an architecture for TC techniques enhanced with PEC, addressing the imperative for immediate adoption of quantum-resistant algorithms.