HP is releasing the world's first business computers that protect product software against quantum computer hacks

16.04.2024

The potential threat of quantum computers capable of overcoming asymmetric cryptography jeopardizes the integrity of the digital world, and the likelihood of this threat materializing is increasing day by day. Therefore, HP announced at the 2024 Annual Partner Conference the world’s first business computers that protect product software against quantum computer attacks.

HP includes an enhanced Endpoint Security Controller (ESC) chip embedded in specific computers that provides customers with the most advanced security ensuring the manageability and protection of sensitive and regulated data. As quantum computer attacks become increasingly serious each year, the importance of such protection is growing.

Research into quantum computers and cryptographic threats shows that 27% of experts estimate a 50% probability of a cryptographically relevant quantum computer (CRQC) emerging by 2033. In such a scenario, the security of device software and digital signatures on software will be compromised, posing a risk to digital security.

However, transitioning the entire digital world to a new cryptographic standard is a significant challenge. While software can be updated, hardware cannot, which includes some cryptographies that protect computer software. Without cryptographic protections, no device will be secure, as attackers could access, alter, and take full control of the underlying device software.

Efforts to address these threats are rapidly increasing. For example, the Dutch government is encouraging Critical Infrastructure Providers to urgently transition to Post-Quantum Cryptography (PQC) following guidance in the Quantum Post-Quantum Cryptography Transition Handbook.

The U.S. government is also issuing special recommendations to use quantum-resistant cryptographic algorithms for product software signing, proposing the use of quantum-resistant cryptography starting in 2025 and making it mandatory for sensitive systems starting in 2030.