As part of its cyberthreat and cybersecurity predictions for 2024, Barracuda asked its frontline technical professionals whether it was time for companies to think about the security impact of quantum computing.
Quantum computing, like AI, is a transformational technology. One of the most notable advantages it offers is speed, super-fast computational processing that will underpin everything from particle physics research to better weather forecasting, traffic optimization, financial modelling, cybersecurity — and more. It will also make it easier for threat actors to break encryption. In November 2022, the U.S. government introduced the Quantum Computing Cybersecurity Awareness Act. The US government is preparing, should we be too?
Barracuda professionals’ perspectives on quantum computing
Sheila Hara, Senior Director, Product Management, Email Protection: While quantum computing is not an immediate threat to current security measures, it’s important to proactively consider its potential impact and take steps to prepare for a future where quantum capabilities may challenge existing cryptographic protections. Quantum computers have the theoretical capability to break widely used encryption algorithms, such as RSA and ECC, through a process known as Shor’s algorithm. This means that sensitive data encrypted with these algorithms could potentially be decrypted by a quantum computer. Confidential information, including personal data, financial transactions, and sensitive communications, could be at risk if encryption methods are compromised by quantum computing. The transition from current cryptographic standards to quantum-resistant standards will take time and careful planning. Organizations need to start considering this transition to ensure the security of their data in the future.
Adam Khan, VP Global Security Operations: While quantum computing presents a potential threat to cybersecurity due to its ability to break current encryption algorithms, the timeline for when it will become a significant concern is uncertain and will depend on the progress in quantum computing technology and the development of quantum-resistant cryptographic algorithms.
Rohit Aradhya, VP and Managing Director, Engineering: Quantum computing capability is an impending threat for the coming years. It is expected that quantum computing will help break asymmetric encryption solutions that base their security on integer factorization or discrete logarithms. However, the practical viability of using quantum resources to impact the security of businesses on a large scale is still few years away. Also, large-scale research and remedial measures are in discussion on how to make security products/solutions address threats emanating from quantum computing abilities. We believe it is something to look out for in the near future, but probably not in 2024.
Mark Lukie, Director of Solution Architects, APAC: Yes, it is time to think about quantum computing from a security perspective, but it is not time to worry. Quantum computers are still in their early stages of development, and we have time to prepare for their arrival. There are several things that organizations and individuals can do to mitigate the security risks associated with quantum computing, such as using post-quantum cryptography algorithms, quantum key distribution, and segmenting networks and systems. We can also educate employees about cybersecurity best practices to help reduce the risk of phishing attacks and other social engineering attacks. While quantum computing poses some security risks, it also has the potential to revolutionize many industries, including cybersecurity. For example, quantum computing could be used to develop new encryption algorithms that are even more secure than the ones we use today.
