Post-Quantum Cryptography and Airlock Secure Access Hub

Airlock Secure Access Hub utilizes established cryptographic libraries for all cryptographic operations. Examples include OpenSSL for Airlock Gateway, BoringSSL for Airlock Microgateway, and Bouncy Castle for Airlock IAM. These providers are actively working on integrating post-quantum cryptography (PQC) ciphers, with experimental implementations already available for some. Since March 2024 (version 8.2), Airlock Gateway has offered a post-quantum proof-of-concept build for testing purposes. Our roadmap prioritizes integrating NIST-certified PQC algorithms, such as Kyber and Dilithium (cf. NIST-203, NIST-204). A detailed FAQ on PQC and Airlock Gateway can be provided upon request.

The PQC roadmap for Airlock Secure Access Hub is closely aligned with the progress of PQC adoption by the aforementioned cryptographic providers. Once stable implementations become available, Airlock products will update their libraries and adapt interfaces to support configurable PQC ciphers. According to NIST IR 8547, algorithms like RSA and ECDH should be deprecated by 2030 and disallowed by 2035. We aim to provide full PQC support across all relevant components by 2028, with incremental adoption starting earlier. Should emerging research alter the threat landscape, we will adjust our roadmap accordingly.

Further Reading:

• Quantum Computers and Security: How to Prepare your Business for Long-Term Protection
• FAQ about Airlock Gateway PQC proof of concept build