Future Proofing Data Communications with Post-Quantum VPN (Q13c)
This talk will focus on the possibility of quantum computers posing a serious challenge to cryptographic algorithms deployed widely today. The Internet Key Exchange Protocol Version 2 (IKEv2) is one example of a cryptosystem that could be broken by someone storing VPN communications today, and decrypting them at a later time with a cryptographically relevant quantum computer. It is anticipated that IKEv2 will be extended to support quantum-secure key exchange algorithms. Addressing this problem describes an extension of IKEv2 to allow it to be resistant to a quantum computer by using post-quantum preshared keys (RFC 8784) and PQ hybrid keys (RFC 9242 and RFC 9370).