BlackBerry and NXP join forces to help companies prepare for & prevent Y2Q post-quantum cyber attacks
(PRNewswire) BlackBerry Limited (NYSE: BB; TSX: BB) today announced it will provide support for quantum-resistant secure boot signatures for NXP® Semiconductors’ (NASDAQ: NXPI) crypto-agile S32G vehicle networking processors in a demonstration to illustrate how to mitigate the risk of potential quantum computing attacks on in-vehicle software. IQT-News shares the announcement here:
The new integration will allow software to be digitally signed using the National Institute of Standards and Technology’s (NIST) recently endorsed CRYSTALS Dilithium digital signature scheme that will be quantum resistant, providing peace of mind to those relying on – and delivering – long lifecycle assets such as systems in critical infrastructure, industrial controls, aerospace and military electronics, telecommunications, transportation infrastructure, and connected cars. The collaboration is set to guard against an increasingly risky future when quantum computers will be able to easily break traditional code signing schemes.
The BlackBerry® Certicom® Code Signing and Key Management Server leverages the NXP S32G chip’s secure boot flow to achieve fast and agile quantum protection. Using quantum-resistant signature schemes such as Dilithium for low-level device firmware, over-the-air software updates and software bills of material (SBOMs) mitigates the risk of potential quantum computing attacks on critical software updates, addressing a major security concern for a number of industries.
“As quantum computers continue to advance in development, it’s increasingly important to work to secure today’s systems against these future threats,” said Joppe Bos, Senior Principal Cryptographer at NXP Semiconductors. “Collaborating with BlackBerry strengthens our solution to address the critical need to harden code signing and software update infrastructure against future cryptosystem vulnerabilities.”
“In the lead up to Y2K, US business spent upwards of $100 billion to avoid calamity and the issue was simply a matter of adding two digits to the date field. Y2Q, when quantum attacks become possible, is on another level, posing a significant threat to industries selling or operating long-lived assets with updatable software,” said Jim Alfred, VP, BlackBerry Technology Solutions. “NXP shares our vision of mitigating the risk of quantum computing concerns and, thanks to their support for hash-based signatures, together we can provide cybersecurity teams with the tools they need now to prevent their existing security measures from becoming obsolete.”
To learn more about the Code Signing and Key Management Server and why BlackBerry Certicom technology is widely deployed in smartphone chips, smart meters, car telematics, and IoT devices, please visit www.certicom.com.
BlackBerry (NYSE: BB; TSX: BB) provides intelligent security software and services to enterprises and governments around the world. The company secures more than 500M endpoints including over 195M vehicles. Based in Waterloo, Ontario, the company leverages AI and machine learning to deliver innovative solutions in the areas of cybersecurity, safety and data privacy solutions, and is a leader in the areas of endpoint security, endpoint management, encryption, and embedded systems. BlackBerry’s vision is clear – to secure a connected future you can trust.
Sandra K. Helsel, Ph.D. has been researching and reporting on frontier technologies since 1990. She has her Ph.D. from the University of Arizona.