The SafeLogic Blog

SafeLogic today announced the launch of an Early Access Program (EAP) for its next-generation cryptographic software modules that include comprehensive support for all the PQC algorithms NIST is planning to standardize in the summer of 2024.  Available now, these modules will allow SafeLogic customers to test and experiment with PQC algorithms and capabilities such as cryptographic asset discovery, cryptoagility, and hybrid use cases. SafeLogic will be demonstrating these modules in booth #6572 at the RSA Conference 2024 in San Francisco this week.

Quantum computers are promising to offer many benefits to society, but the advent of that technology also carries some risks.  One major risk is the threat that quantum computers are expected to pose to the world’s public key (asymmetric) encryption.  It is believed that once sufficiently powerful quantum computers are available, they will be able to break most of the widely available public key encryption in use today.  Should this risk materialize, the significant negative impact on security, privacy, and trust is hard to overstate. 

Correspondingly, NIST has been running a worldwide competition for over five years now to select and standardize PQC algorithms that are resistant to cryptanalytic attacks from future quantum computers.  SafeLogic had been working closely with NIST and other industry collaborators on NIST’s NCCOE PQC migration project where it had been leading the PQC migration prioritization workstream. 

“For over a decade, SafeLogic has been a trusted and proven cryptographic software solutions partner for companies that require strong, FIPS 140 validated cryptographic software. Our customers include top technology vendors, many of which sell to regulated industries such as the US Public Sector that already have PQC migration requirements in place via various executive orders and congressional actions,” said Evgeny Gervis, CEO of SafeLogic.  “These and other customers, such as financial services and healthcare organizations, want to start preparing for PQC migration now, and SafeLogic is excited to be their partner on that journey.”

• PQC algorithms CRYSTALS-KYBER, CRYSTALS-Dilithium, FALCON, SPHINCS+, LMS, and XMSS are now available for customer testing. SafeLogic expects to incorporate these into its FIPS 140 validated CryptoComply software once NIST completes the standardization process and doing so becomes possible.
• SafeLogic takes a unique approach to cryptographic asset discovery by providing real-time operational information for when quantum-vulnerable cryptography is being used. This information can greatly help organizations with their cryptographic inventories and migration prioritization decisions.
• SafeLogic’s approach to cryptoagility builds on CryptoComply’s provider architecture to reduce the effort required for future cryptography migrations.
• SafeLogic’s approach to hybrid mode allows organizations to safely wrap classical FIPS 140-2 or FIPS 140-3 validated encryption in PQC to protect valuable data from “harvest now, decrypt later” attacks while maintaining FIPS compliance and providing defense in depth.

SafeLogic’s PQC solutions offer several distinct advantages:

1. Field-Proven Validated Cryptographic Implementations:  SafeLogic’s CryptoComply cryptographic software modules have been used in the field for over a decade.  SafeLogic’s implementations have achieved FIPS 140 validation status following rigorous testing and review by certified laboratories and NIST.  SafeLogic plans to add PQC algorithms to its FIPS 140-3 validated modules once those algorithms are fully standardized.

2. Extensive Environment Coverage with Maximum Compatibility. The use of cryptography is ubiquitous across the digital ecosystem, and comprehensive cryptographic software solution providers must be able to cover the full gamut of environments in which cryptography is used. SafeLogic’s modules are available for more programming languages, operating systems, and technology stacks than any alternative.  SafeLogic customers use CryptoComply software modules anywhere from mobile and embedded environments, to mainframes, and everything in between. Also, SafeLogic’s modules are designed to serve as drop-in replacements for existing (e.g., open source) cryptographic libraries.

3. Commercial Grade Support: As always, SafeLogic’s cryptographic software modules come with an experienced support team ready to provide white-glove service to support its customers’ software and certification needs. SafeLogic can also consult with organizations to assist with their PQC migration planning.

4. Support for CNSA 2.0: SafeLogic’s modules support the CNSA 2.0 suite of algorithms, a set of standards that commercial solutions must meet if they are to be used in classified environments. 

5. Memory Safety: SafeLogic is offering increasingly growing support for cryptographic algorithm implementations in memory-safe languages.  It is widely known that using memory safe languages can eliminate whole categories of security issues. A recent White House memorandum has called on the industry to adopt the use of memory-safe languages to the greatest degree possible.

As organizations prepare for PQC migration, the largest migration in the history of cryptography, the dimensions above will be key to meeting their needs in a comprehensive fashion.  To learn more about SafeLogic’s PQC EAP, contact sales@safelogic.com.