Uncovering the Hidden Security Features of ML-KEM
Praveenaa U
Secure Session Key Management is not complicated and can be achieved by following some well-tested basic architectures.
With the impending arrival of quantum computers expected within the next 5 to 8 years, the way cryptographic key management is to be designed today needs rethinking.
Any new project being developed today (assuming a 2 year rollout), and then running in production for at least 7-8 years will certainly face the threat of quantum computers during the lifetime of the project. If classical public key management techniques, say using RSA to distribute session keys, are used, then such projects are likely to see a major upgrade during the useful life of the project or worse still, be forced to be decommissioned earlier than expected. On the other hand, waiting for the new NIST PQC FIPS-203 ML-KEM (Kyber) algorithm to be standardized and be widely available for use in most applications may require projects to postpone their rollouts by another 1 to 2 more years.
A more straight-forward quantum-safe session key management using symmetric cryptographic techniques already exists and has been used for decades (for example in deterministic generation in RFC4226, session key derivation in EMV). It is a combination of AES and SHA algorithms, both of which are quantum-safe when keys of sufficient sizes are used. The recommended minimum values for NIST Quantum Security Level 1 are AES-256 and SHA256.
To understand symmetric session key management, let's envision a hub-and-spoke model where the central "hub" is responsible to generating and injecting keys to the "spoke" devices. All secured communications between "spokes" are required to go through the "hub" which is responsible for processing and translating the messages accordingly.
The key preparation/provisioning process is as follows:
When Hub requires to communicate with Spoke A, the following happens
To extend the system to support spoke-to-spoke communications (e.g. between Spoke A and Spoke B), the hub requires to include a translate operation which will has modify EncSK as follows, EncSK_toB = AES256_enc(AES256_dec(EncSK_fromA,DK_A),DK_B)
What I've described above is a basic architecture for a symmetric key hierarchy which should be extended to enhance security. These include
While quantum computers can threaten cryptographic security, there are already well-tested and well-used techniques that will not cost huge amounts of resources to still remain secure over the long term. The smart use of symmetric key and hashing techniques is one such example.
Do contact us at pQCee if you want to know more.
Author
Teik Guan is CEO of pQCee.com. He works in the niche area of cryptographic security design and integration, having implemented numerous successful projects for banks, government agencies and enterprises. He holds a BSc and MSc from NUS and a PhD from SUTD.
Don't have an account? We will create one for you.
Enter the OTP send to
in seconds. Check your spam folder if you can't find email from us.
Valid email is required for further communications