HP is releasing the world's first business computers that protect product software against quantum computer hacks

16.04.2024

 

The potential threat of quantum computers capable of overcoming asymmetric cryptography jeopardizes the integrity of the digital world, and the likelihood of this threat materializing is increasing day by day. Therefore, HP announced at the 2024 Annual Partner Conference the world’s first business computers that protect product software against quantum computer attacks.

HP includes an enhanced Endpoint Security Controller (ESC) chip embedded in specific computers that provides customers with the most advanced security ensuring the manageability and protection of sensitive and regulated data. As quantum computer attacks become increasingly serious each year, the importance of such protection is growing.

Research into quantum computers and cryptographic threats shows that 27% of experts estimate a 50% probability of a cryptographically relevant quantum computer (CRQC) emerging by 2033. In such a scenario, the security of device software and digital signatures on software will be compromised, posing a risk to digital security.

However, transitioning the entire digital world to a new cryptographic standard is a significant challenge. While software can be updated, hardware cannot, which includes some cryptographies that protect computer software. Without cryptographic protections, no device will be secure, as attackers could access, alter, and take full control of the underlying device software.

Efforts to address these threats are rapidly increasing. For example, the Dutch government is encouraging Critical Infrastructure Providers to urgently transition to Post-Quantum Cryptography (PQC) following guidance in the Quantum Post-Quantum Cryptography Transition Handbook.

The U.S. government is also issuing special recommendations to use quantum-resistant cryptographic algorithms for product software signing, proposing the use of quantum-resistant cryptography starting in 2025 and making it mandatory for sensitive systems starting in 2030.

Other news

U.S. Cybersecurity Agency Warns of Actively Exploited Ivanti EPMM Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a now-patched critical flaw impacting Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core to its Known Exploited Vulnerabilities (KEV) catalog, stating it’s being actively exploited in the wild.

Read More

Iranian Hackers Target Middle East Policy Experts with New BASICSTAR Backdoor

The Iranian-origin threat group known as Charming Kitten has been linked to a series of new attacks targeting Middle East policy experts. These attacks involve the use of a new backdoor named BASICSTAR, deployed through a fake webinar portal.

Read More
en_USEnglish