Software-Defined Cryptography: A Design Feature of Cryptographic Agility (original) (raw)
Abstract:Given the widespread use of cryptography in Enterprise IT, migration to post-quantum cryptography (PQC) is not drop-in replacement at all. Cryptographic agility, or crypto-agility, is a design feature that enables seamless updates to new cryptographic algorithms and standards without the need to modify or replace the surrounding infrastructure. This paper introduces a notion of software-defined cryptography as the desired design feature for crypto-agility, emphasizing the role of software in providing centralized governance for cryptography and automated enforcement of cryptographic policies, such as migration to PQC.
Submission history
From: Eunkyung Kim Dr. [view email]
[v1] Tue, 2 Apr 2024 10:11:58 UTC (1,189 KB)
[v2] Sun, 1 Sep 2024 10:39:09 UTC (338 KB)