The race to create new cryptographic standards before super-fast quantum computers are built that can rip apart data protected by existing encryption methods isnโt going fast enough, two senior Canadian officials have warned a security conference.
โI think we are already behind,โ Scott Jones, deputy chief of IT security at the Communications Security Establishment (CSE), responsible for securing federal information systems, told the
Quantum computing โ or more accurately, computers that use quantum mechanics โ is not a dream, Jones and others told the conference of business executives, crypto academics, IT companies and government officials. One prediction is thereโs a one in seven chance that by 2026 a quantum computer will exist that can break RSA-2048 encryption. It may take longer โ or, if thereโs an advance, shorter.
โQuantum represents a fundamental change and challenge to encryption for all of us,โ Jones said, noting that encrypted transactions are the backbone of security and trust on the Internet.
His comments were backed by David Sabourin, CSEโs manager of cryptographic security,ย who said that if the 2026 prediction is right โweโre in trouble.โ Speaking on a panel of government experts, Sabourin noted the U.S.-based National Institute of Standards and Technology (NIST) 
IBM makes quantum computing available to the masses
May 4th, 2016 Ryan Patrick 
Waterloo researchers team on quantum-based security
Mondayโs session was aimed mainly at leaders of companies and government. Sessions today and Wednesday will see more technical proposals discussed on creating standards to meet the problem.
In an interview Jones said CSOs today have ask what information they have that is at risk. โIf I take the worst case scenario ] a quantum system that can break encryption in 10 years], is there information I am holding that Iโm responsible for protecting? Then, what steps do I need to take to protect that. Itโs the same quesiton around general cyber security,โ he added.
Some governments are already taking action. For example, the conference heard, Germany requires satellites regulated by the country to be able to be reconfigured for quantum-secure solutions.
The conference is organized by the European Telecommunications Standards Institute (ETSI) and the University of Waterlooโs Institute for Quantum Computing.
โThis is not a just a nuisance for technical people or mathematicians,โ Michele Mosca, the IQCโs co-founder and deputy director told the conference โThis is going to seriously compromise the security and integrity of our information assets and core business functions. The business functions you and your customers rely on wonโt work โ and its not a matter of patching it up in a couple of days.โ
There are two ways of mitigating the threat, he said: Deployingย conventional quantum-safe cryptography (also called quantum resistant algorithms or post-quantum cryptography), which includes hash-based and lattice-based and symmetric key cryptography solutions; and the yet-t0-be built quantum cryptography, whichย uses the properties of quantum mechanics to establish keys that cannot be broken.
To help risk officers Moscaโs reduced the problem to a mathematical equation, where x is the shelf life of current information, y is the number of years it would take to retool the organizationโs existing infrastructure with large scale quantum-safe solution, and z the number of years it will take for a large scale quantum computer to be built.
If x+y is greater that z, the organization has a problem and has to act, he said.
He also added that the threat is serious enough to predict that in the next six to 24 months organizations will be differentiated by whether they have a well-articulated quantum risk management strategy.
Governments and academics arenโt working alone on the problem. So are companies as big as Cisco Systems, Microsoft and Intel, who had representatives on a panel. All said one reason is they need to ย ensure their companies are able to deliver secure software updates in the future.
It doesnโt matter how far away a quantum computer is, said Brian LaMacchia, director of Microsoft Researchโs security and cryptography group โ itโs coming. Even if a quantum computer isnโt built, he added, the solutions being worked on will help strengthen IT security.
David McGrew, a fellow in Ciscoโs advanced security research group, said one way CIO can be ready is ensuring itโs organization has an agile infrastructure ready to adopt new encryption solutions.