Home
Blog
National Security Algorithm Suite 2.0 (CNSA 2.0)

National Security Algorithm Suite 2.0 (CNSA 2.0)

April 30, 2024
3
min read
National Security Algorithm Suite 2.0 (CNSA 2.0)

Getting Ready for the Future: A Look at The Commercial National Security Algorithm Suite 2.0 (CNSA 2.0)

The transition to post-quantum cryptography is continuing to accelerate. Last week, the National Security Agency (NSA) released its latest update to the Commercial National Security Algorithm Suite 2.0 (CNSA 2.0), the set of cryptography requirements for securing National Security Systems (NSS) against the potential threat of quantum computers.

What is CNSA 2.0?

CNSA 2.0 sets the standards and timelines for organizations owning, operating, or supporting National Security Systems to transition to quantum-resistant (QR) algorithms. These algorithms are designed to be secure even when faced with the immense processing power of quantum computers. Traditional public-key cryptography, used throughout security systems today, will be vulnerable to attacks from sufficiently powerful quantum computers. CNSA 2.0 aims to mitigate this risk mandating the transition to new, post-quantum cryptography.

Why is CNSA 2.0 important?

Experts expect that quantum computers able to break current encryption methods could be available as soon as 2030 and data that is encrypted today is at risk from Harvest Now/Decrypt Later attacks. CNSA 2.0 prepares NSS by setting the timeframes to transition to QR algorithms resistant to such attacks. Even organizations that do not support National Security Systems should carefully review the guidance. Clearly the stakes are the highest for national intelligence and defense, but critical infrastructure, financial services, healthcare, technology, and any other sectors that handle sensitive data are also at risk.

What's the timeline for CNSA 2.0?

The NSA is urging NSS owners and operators to be aware of the requirements, start the transition now where possible, and closely monitor the availability of additional QR standards. Most importantly, NIST has announced that it will be releasing new cryptographic standards for key exchange and digital signature in FIPS 203, 204, and 205 by the summer of 2024.  

The following table details the CNSA 2.0 timeline requirements for different system types:

CNSA requirements by system type

What are the implications of CNSA 2.0?

The NSA and other cybersecurity experts clearly recognize the complexity of transitioning cryptographic algorithms and systems. For years they have advised organizations to begin the transition planning process, including inventorying cryptographic usage, completing risk assessments, and beginning the transition to quantum-safe algorithms as soon as possible. CNSA 2.0 lays out specific requirements for NSS, and it provides a guide to organizations of all types on the timelines that they should work towards in this transition. Vendors, developers, and implementers need to start this shift today if they haven’t already.

A graph of progress on a blue backgroundDescription automatically generated

Mike Frazzini
Mike Frazzini

Related articles

Start Planning Your Upgrade to Post-Quantum Cryptography (PQC)

Start Planning Your Upgrade to Post-Quantum Cryptography (PQC)

Quantum computing poses a major threat to current encryption methods. Organizations must start preparing for the transition to Post-Quantum Cryptography (PQC) now to protect sensitive data and avoid catastrophic breaches. The unpredictable arrival of powerful quantum computers (Q-day) makes this shift urgent; sensitive information is already vulnerable to "harvest now, decrypt later" attacks. PQC implementation ensures data security, compliance with evolving regulations, and competitive advantage. The steps include assessing your current cryptographic systems, developing a tailored PQC transition plan, and educating your team. Don't wait, act now to safeguard your organization's future in the quantum era.
Michael Klieman
Michael Klieman
April 10, 2024
4
min read
PQC Standards and Regulations: A Guide for Security Leaders

PQC Standards and Regulations: A Guide for Security Leaders

Quantum computing poses a serious threat to current encryption methods. Security leaders must understand the evolving landscape of Post-Quantum Cryptography (PQC) standards and regulations. Key organizations like NIST, ETSI, and others are spearheading standardization efforts, with NIST's selection of initial PQC algorithms being a major milestone. Regulations are also emerging, with governments and industry-specific bodies establishing mandates and guidelines. Security leaders must proactively stay informed, conduct cryptographic assessments to understand their organization's risk posture and collaborate with industry groups. The transition to PQC is complex but necessary to ensure data security in the quantum era.
Michael Klieman
Michael Klieman
April 10, 2024
6
min read
Cryptography in Infrastructure: Preparing for Quantum Threats

Cryptography in Infrastructure: Preparing for Quantum Threats

Quantum computing disrupts traditional cryptography, posing a serious threat to the infrastructure upon which organizations rely. This includes data centers, networks, and endpoint devices. Proactive organizations must begin preparing for this threat by understanding their specific cryptographic landscape, including how this extends to cloud service providers. A risk assessment of their data, especially considering long-term storage and data sensitivity, will prioritize their transition to quantum-resistant cryptography (PQC). As new PQC standards are finalized, organizations should adopt them in a phased way. This includes network security, data storage, and access control mechanisms. Hybrid cryptography solutions can ease the transition. Staying informed through engagement with standards bodies is crucial as the threat landscape evolves.
Mike Frazzini
Mike Frazzini
April 10, 2024
5
min read
View all
Haderaq Logo
Contact:
learn.more@haderaq.com
HomeServicesBlogAbout usAbout usLearn more
Privacy PolicyTerms of ServiceCookies Settings
© 2024 Haderaq, Inc. All rights reserved.