NSA Accused of Shaping Post-Quantum Cryptography Standards to Favor Its Own Interests

Cryptologist Alleges NSA Influence on Post-Quantum Cryptography Standards In a shocking revelation, cryptologist Daniel J. Bernstein has accused the National Security Agency (NSA) of attempting to influence the development of post-quantum cryptography standards. According to Bernstein, the NSA is pushing for a weakening of traditional pre-quantum encryption algorithms in favor of post-quantum alternatives. The Allegation Bernstein, a professor at the University of Illinois and a renowned expert in cryptography, claims that the NSA and its UK counterpart, GCHQ, are trying to have standards-development organizations endorse the use of weakened pre-quantum Elliptic Curve Cryptography with Post-Quantum (ECCPQ) algorithms. This would essentially mean that traditional encryption methods would be replaced by post-quantum alternatives, which Bernstein argues is a flawed approach. "The problem in a nutshell," Bernstein explained, "is that surveillance agencies like the NSA and GCHQ are trying to have standards-development organizations endorse weakening pre-quantum ECCPQ down to just PQ. They're repeating arguments that this is a good thing, but I'm looking at how easy it is for them to simply spend money to corrupt the standardization process." Background and Context Post-quantum cryptography refers to encryption methods that are resistant to attacks by quantum computers. As quantum computing technology advances, traditional encryption algorithms may become vulnerable to hacking. To address this issue, the National Institute of Standards and Technology (NIST) has been working on developing post-quantum cryptography standards. However, Bernstein's allegations suggest that the NSA is trying to influence the standardization process in favor of weakened pre-quantum algorithms. This would compromise the security of sensitive information and potentially leave it vulnerable to hacking. Implications The implications of the NSA's alleged actions are far-reaching. If post-quantum cryptography standards are developed without proper consideration for traditional encryption methods, it could lead to a significant weakening of global cybersecurity. "This is not just about cryptography; it's about the security of our entire digital infrastructure," said Bernstein. "If we're going to replace traditional encryption with post-quantum alternatives, we need to do it in a way that ensures the security of sensitive information." Current Status and Next Developments The NIST has not commented on Bernstein's allegations, but the issue is expected to be discussed at an upcoming meeting of the NIST Post-Quantum Cryptography Working Group. In June 2024, NSA official William Layton wrote that "we do not anticipate supporting hybrid in national security systems." This statement suggests that the NSA may be pushing for a complete transition to post-quantum cryptography, rather than a hybrid approach that combines traditional and post-quantum methods. As the debate over post-quantum cryptography standards continues, one thing is clear: the future of global cybersecurity hangs in the balance. *Reporting by It.*