2025-06-13 –, E105 (capacity 70)
Quantum computers look to eventually break all our existing public key algorithms. NIST has creates new replacement algorithms for key exchange and signatures. These new algorithms include new primitives like Key Encryption Mechanisms (KEMS) that can be built from either Key Exchange Algorithms (KEX) or Key Encryption Algorithms (KEA). Signatures now include primitives that require the signature before the hash verification starts. This talk walks through these new ideas, now PKCS #11 handles them and how they new algorithms actually work.
Intermediate - attendees should be familiar with the subject
Bob has been working in crypto security for more than 25 years. He works with mozilla NSS and as co-chair of the PKCS #11technical committee. He likes to get into the gory math of crypto systems to at least understand how the algorithms work and what are the most promising attack vectors. Recently he's worked on defining the Post quantum mechanisms and APIs in PKCS #11 and integrating those into NSS.