IOTA adds post-quantum cryptography to its identity framework

The IOTA Foundation has released a new beta version of its decentralized identity framework, introducing post-quantum cryptography to protect digital credentials. The release implements the ML-DSA, an algorithm recommended by the U.S. National Institute of Standards and Technology (NIST).

For now, the post-quantum signatures are being released as an experimental feature for developers. The decentralized blockchain infrastructure organization believes, however, that this foundation will help address the advent of quantum computing, which could render the widely used encryption methods of today obsolete.

Aside from post-quantum signatures, the IOTA Identity 1.7 Beta also introduces hybrid signatures for Verifiable Credentials (VCs), which combine traditional cryptographic algorithms with post-quantum algorithms, such as ML-DSA. The signatures were developed with the non-profit research center LINKS Foundation.

“Organizations using hybrid signatures can begin adopting post-quantum security gradually, without replacing their existing systems,” the Germany-based non-profit explains in a release.

The Alpha version of IOTA Identity was launched in March this year with the purpose of streamlining identity verification and management. The scheme is based on SSI and W3C Decentralized Identity Standards, and uses decentralized identifiers (DIDs) to enable individuals, organizations, and devices to create, own and control their digital identities.

Another news brought by IOTA Identity 1.7 Beta is that it allows organizations to publish Verifiable Credentials on-chain to a public IOTA address. This ensures VCs are discoverable and verifiable through a DID Document and turns them into publicly accessible proofs.

“This is especially useful for organizational or product-related credentials such as certifications, technical specifications, or proofs of origin – cases where transparency and broad accessibility matter,” says IOTA.

The IOTA Foundation recently announced a partnership with the Global Legal Entity Identifier Foundation (GLEIF). According to the deal, GLEIF will integrate its system of unique and verifiable IDs for companies with IOTA’s distributed ledger technology.

The system will be part of the IOTA’s Trade Worldwide Information Network (TWIN), a decentralized trade infrastructure that facilitates real-time and verifiable data sharing beyond borders.

Article Topics

decentralized ID  |  electronic-signature  |  identity management  |  identity verification  |  IOTA Foundation  |  IOTA Identity  |  post-quantum cryptography