"Crypto-Agility"

How do I prepare for algorithm changes?

An organisation is crypto-agile when the security team knows all of the algorithms, keys, crypto libraries and protocols in use in their applications and infrastructure, and has a plan that would allow them to change rapidly if necessary.

There are numerous reasons why an organisation might need to change algorithm: the impending arrival of a quantum computer that can break existing asymmetric crypto, compliance rules changing as cryptanalysis advances, a new mathematical discovery, or the slow march of available computing power making previous cryptographic keylengths too short.

Questions about crypto-agility? Ask our team in the forum.

to the forum!

What is Crypto-Agility?

In this video Graham explains how you can achieve "crypto-agility" by maintaining an up to date cryptography inventory.

WHITE PAPER

Building a Crypto-Agile Organization

Tool up to face a changing cryptography landscape

In this whitepaper we discuss why we need crypto-agility and exactly how we should define it. Next we draw on the recent literature from NIST, the NCSC, Gartner, SafeCode and others to put together a five step program you can use to achieve crypto-agility in your organisation, starting today. 

Crypto-agility is the ability to support rapid adaptations of cryptographic primitives and algorithms without making significant changes to the system's infrastructure, and without exposure to unacceptable business continuity risks 

The collective experience of removing the now-deprecated hash functions MD5 and SHA-1 has highlighted something critical: cryptography migration is hard and resource intensive. In fact, the NSA recently stated that in order to migrate to new cryptography, it would take NSS (National Security Systems) up to 20 years.

Already registered? Log in here.

Welcome!

As a subscriber to our Knowledge Base, you have free access to all of our white papers, on-demand webinars and more.
Download white paper

Register now

Register for free access to all of our white papers, on-demand webinars and more.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.