FB pixel

Entrust hardware security module running PQC algorithms validated by NIST program

| Chris Burt
Categories Access Control  |  Biometric R&D  |  Biometrics News
Entrust hardware security module running PQC algorithms validated by NIST program
 

Implementations of three post-quantum encryption algorithms standardized by NIST on a hardware security module from Entrust have been successfully validated, giving enterprises assurance that they can protect their sensitive data, such as biometric templates, against the threat of quantum computing.

Entrust says its nShield Hardware Security Module (HSM) natively supports the ML-DSA, ML-KEM, and SLH-DSA algorithms, and implementations of each were validated under NIST’s Cryptographic Algorithm Validation Program (CAVP).

Entrust has also submitted the HSM firmware with the three post-quantum cryptography (PQC) algorithms to the Cryptographic Module Validation Program (CMVP) for FIPS 140-3 Level 3 certification.

“Our achievement in obtaining NIST validation for the post-quantum algorithms in production-ready Entrust HSMs is a key differentiator for our customers,” said Entrust Chief Technology and Product Officer Mike Baxter. “This certification gives organizations the confidence that their nShield HSMs are post-quantum ready and recognized by the world’s leading standards body, NIST.”

When exactly organizations must be ready to protect their sensitive data from post-quantum threats is still a matter of some speculation, but a consensus is emerging that biometrics and digital identity providers should already be working on how to keep cryptographic protections intact.

What is the Cryptographic Algorithm Validation Program?

The CAVP is an initiative under which NIST supports testing to validate cryptographic algorithms and their components as meeting the agencies own recommendations, as well as the criteria for approval under FIPS. The FIPS-approved algorithms are listed in NIST SP 800-140C and SP 800-140D.

A demo Automated Cryptographic Validation Test Systems (ACVTS) is available through the program to developers for self-testing, while a production ACVTS server is available to NVLAP-accredited testing laboratories.

CAVP is also a prerequisite for submissions to the CVMP.

Related Posts

Article Topics

 |   |   |   |   |   |   | 

Latest Biometrics News

 

Ring and Flock call off integration as scrutiny of camera-to-police partnership intensifies

Amazon-owned Ring and Flock Safety have canceled their planned partnership, stepping back from an integration that would have linked one…

 

MOSIP pursues democratization of digital identity with unconference conversations

A democratic vision of digital identity is central to the non-profit, open-source mandate of MOSIP. As the organization and the…

 

Liveness is king: FaceTec’s Jay Meier in conversation with Chris Burt 

It’s best, says Jay Meier, to think about identity management as a system of symbiotic systems. Which is to say,…

 

Ofcom fines Kick, threatens 4chan as OSA enforcement steadily dials up

UK regulator Ofcom has faced criticism for being too slow and lenient with its power to enforce the Online Safety…

 

Innovatrics, ROC improve rankings in NIST ELFT, rising to 2 and 3 respectively

Innovatrics is celebrating success in the latest National Institute of Standards and Technology (NIST) Evaluation of Latent Fingerprint Technologies (ELFT)…

 

Meta plans launch of facial recognition to smart glasses in ‘dynamic political environment’

Meta is reportedly planning to roll out facial recognition capabilities for its smart glasses as early as this year, taking…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Continue Reading

Biometric Market Analysis and Buyer's Guides

Most Viewed This Week

Featured Company

Learn More

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events