NIST Selects 14 Candidates for Post-Quantum Cryptography Standard

In a significant milestone towards securing digital communications, the National Institute of Standards and Technology (NIST) has announced the selection of 14 candidates to advance to the second round of its Post-Quantum Cryptography Standardization Process.

This process aims to develop new cryptographic standards that can resist attacks from powerful quantum computers. The chosen algorithms include CROSS, FAEST, HAWK, LESS, MAYO, Mirath, MQOM, PERK, QR-UOV, RYDE, SDitH, SNOVA, SQIsign, and UOV. These candidates were selected after a rigorous evaluation process that spanned over a year, involving the cryptographic community at large.

The next phase of evaluation is expected to last 12-18 months, with NIST planning to hold its 6th PQC Standardization Conference in September 2025.

Post-Quantum Cryptography Standardization Process: Advancing Digital Signature Algorithms

The National Institute of Standards and Technology (NIST) has announced the selection of 14 digital signature algorithms to advance to the second round of the Additional Digital Signatures for the NIST PQC Standardization Process. This milestone marks a significant step forward in the development of post-quantum cryptography standards, which are essential for securing data against potential quantum computer attacks.

The selected algorithms, including CROSS, FAEST, HAWK, LESS, MAYO, Mirath (a merger of MIRA/MiRitH), MQOM, PERK, QR-UOV, RYDE, SDitH, SNOVA, SQIsign, and UOV, have undergone rigorous evaluation based on the criteria outlined in NIST Internal Report (IR) 8528. The report provides a detailed description of the selection process, which involved a thorough analysis of each candidate algorithm’s security, performance, and implementation characteristics.

The cryptographic community has played a vital role in this standardization process, providing valuable insights and feedback that have helped shape the evaluation criteria and selection process. NIST acknowledges the contributions of all candidate submission teams and the broader cryptographic community, whose collective efforts have been instrumental in driving this initiative forward.

Evaluation Criteria and Selection Process

The evaluation criteria for the Additional Digital Signatures for the NIST PQC Standardization Process were designed to assess the security, performance, and implementability of each candidate algorithm. The selection process involved a comprehensive review of each algorithm’s submission package, which included detailed descriptions of the algorithm’s design, implementation, and security analysis.

The evaluation criteria encompassed several key aspects, including the algorithm’s resistance to quantum attacks, its computational efficiency, and its feasibility for practical implementation. The NIST team also considered factors such as the algorithm’s maturity, its potential for optimization, and its compatibility with existing cryptographic infrastructure.

Next Steps: Refining and Optimizing Candidate Algorithms

The 14 selected algorithms will now proceed to the second round of evaluation, which is expected to last approximately 12-18 months. During this phase, candidate teams have the option to submit updated specifications and implementations, often referred to as “tweaks.” These refinements aim to further optimize the algorithms’ performance, security, and implementability.

NIST will provide additional guidance to the submission teams in a separate communication, outlining the specific requirements and expectations for the second round of evaluation. The agency is also planning to hold a 6th NIST PQC Standardization Conference from September 24-26, 2025, at its Gaithersburg, Maryland facility, which will provide a platform for the cryptographic community to discuss the latest developments in post-quantum cryptography.

The Road Ahead: Securing Data against Quantum Attacks

The development of post-quantum cryptography standards is critical for ensuring the long-term security of data against potential quantum computer attacks. As quantum computing capabilities continue to advance, the need for robust and efficient cryptographic algorithms that can resist these threats becomes increasingly urgent.

The NIST PQC Standardization Process represents a concerted effort by the cryptographic community to develop and standardize post-quantum cryptography solutions that can be widely adopted and deployed. The selection of 14 candidate algorithms marks an important milestone in this process, paving the way for further refinement and optimization of these algorithms.

Ultimately, the successful development and deployment of post-quantum cryptography standards will depend on continued collaboration between researchers, industry stakeholders, and government agencies. By working together, we can ensure that our data remains secure against the threats posed by quantum computers, safeguarding the integrity of our digital infrastructure for generations to come.