Earlier this year, our chief technology officer (CTO) of data security, Walid Rjaibi, outlined his perspective on the risks that quantum computers might pose to cybersecurity, particularly concerning common algorithms used in encryption. He astutely observed, however, that the risks are only one part of the story.

Quantum computing also has the potential to revolutionize our cybersecurity capabilities.

How Will Quantum Computing Enhance Cybersecurity?

According to a new IBM Institute for Business Value (IBV) paper, the two most notable areas of cybersecurity that quantum computing promises to enhance are machine learning and quantum number generation.

Machine learning is already a widely used and understood term in the cybersecurity world. We use machine learning capabilities today in security information and event management (SIEM), data protection, incident response and other solutions to improve behavior anomaly detection, classification and prediction capabilities. Given their improved speed and power, quantum computers have the potential to enhance the efficacy of machine learning when used for cybersecurity pursuits.

Random number generation is a key component of cryptography (pun intended). Classical random number generation can be split into two categories: pseudo-random number generators (PRNGs) and true random number generators (TRNGs). TRNGs are more suitable for generating strong encryption keys (you can read more about why in the IBV paper). Quantum random number generators (QRNGs) would be a special subset of TRNGs, which exploit the inherent randomness of quantum physics to generate even more random sequences of numbers, thus stronger encryption keys.

Download the complete IBM IBV paper: Preparing Cybersecurity Now for a Quantum World

Cybersecurity: Why the Sky Isn’t Falling

As you may have learned at Think 2018, despite the risks quantum computing may pose to cybersecurity, the sky is not falling. There are many measures organizations can take to safeguard their critical data today and in the future.

For example, doubling the key size of existing symmetric encryption algorithms can help companies prepare for how the cybersecurity landscape may change when large-scale quantum computers become available. Beyond that, the improvements quantum computing could potentially bring to cybersecurity will also contribute to stronger protection capabilities.

To learn more about the cybersecurity implications of quantum computing and how you can prepare for the future, download our recent paper from the IBM IBV, “Wielding a Double-Edged Sword: Preparing Cybersecurity Now for a Quantum World.”

More from CISO

Ransomware Renaissance 2023: The Definitive Guide to Stay Safer

2 min read - Ransomware is experiencing a renaissance in 2023, with some cybersecurity firms reporting over 400 attacks in the month of March alone. And it shouldn’t be a surprise: the 2023 X-Force Threat Intelligence Index found backdoor deployments — malware providing remote access — as the top attacker action in 2022, and aptly predicted 2022’s backdoor failures would become 2023’s ransomware crisis. Compounding the problem is the industrialization of the cybercrime ecosystem, enabling adversaries to complete more attacks, faster. Over the last…

2 min read

Do You Really Need a CISO?

2 min read - Cybersecurity has never been more challenging or vital. Every organization needs strong leadership on cybersecurity policy, procurement and execution — such as a CISO, or chief information security officer. A CISO is a senior executive in charge of an organization’s information, cyber and technology security. CISOs need a complete understanding of cybersecurity as well as the business, the board, the C-suite and how to speak in the language of senior leadership. It’s a changing role in a changing world. But…

2 min read

What “Beginner” Skills do Security Leaders Need to Refresh?

4 min read - The chief information security officer (CISO) was once a highly technical role primarily focused on security. But now, the role is evolving. Modern security leaders must work across divisions to secure technology and help meet business objectives. To stay relevant, the CISO must have a broad range of skills to maintain adequate security and collaborate with teams of varying technical expertise. Learning is essential to simply keep pace in security. In a CISO Series podcast, Skillsoft CISO Okey Obudulu recently said,…

4 min read

The Needs of a Modernized SOC for Hybrid Cloud

5 min read - Cybersecurity has made a lot of progress over the last ten years. Improved standards (e.g., MITRE), threat intelligence, processes and technology have significantly helped improve visibility, automate information gathering (SOAR) and many manual tasks. Additionally, new analytics (UEBA/SIEM) and endpoint (EDR) technologies can detect and often stop entire classes of threats. Now we are seeing the emergence of technologies such as attack surface management (ASM), which are starting to help organisations get more proactive and focus their efforts for maximum…

5 min read