Aivo Kalu
Dr Aivo Kalu is a leading security engineer with over 20 years of experience in information security, cryptography and digital identity at Cybernetica, company that has been building future-proof technologies that rely on research and development for over 25 years. Cybernerica's unique expertise ranges from secure data exchange like the X-road to digital identity, i-voting, information security and more. Aivo's responsibilities include product development and consulting government authorities, trust service providers and other clients about their digital identity programs, authentication, signing, and wallet solutions and applying security protocols, cryptography, standardisation and security certification to client's problems.
Session
This talk explains how to solve the private key protection problem for PQC algorithms, in the domain of regulated and certified digital identity wallets, but applicable more generally. EUDI wallets will rely on the abstract components WSCA (Wallet Secure Cryptographic Application) and WSCD (Wallet Secure Cryptographic Device). We show that the use of threshold and thresholdized pre- and postquantum-secure signature schemes in handshake protocols is a viable approach, providing an alternative for the case when hardware support for such schemes will be delayed. We discuss how such schemes can be deployed, and what performance to expect. While hardware solutions usually enjoy government approved security certification status, we show how to achieve the same security assurance level with software-oriented products, which are based on PQC-secure threshold schemes.