Hindi English Translation || Editorial || Quantum-safe thinking: on the new DST Task Force report

Quantum-safe thinking: on the new DST Task Force report

India must be alive to (सचेत, जागरूक) multiple challenges posed by advanced encryption algorithms

The new DST Task Force (a specialized committee constituted under the Department of Science and Technology (DST), Government of India, responsible for drafting the national roadmap (“Implementation of Quantum Safe Ecosystem in India”) to mandate and guide the phased transition of critical sectors to post-quantum cryptography) report on making India’s digital ecosystems (डिजिटल पारिस्थितिकी तंत्र) quantum-safe is a product of contemplating (विचार करना, मनन करना) a threat that is both long-term and urgent. Today, public-key cryptography underpins (आधार बनना, सहारा देना) online identity protection (ऑनलाइन पहचान सुरक्षा) and secure communications (सुरक्षित संचार). Its protective (सुरक्षात्मक, रक्षात्मक) ability rests on (आधारित होना, निर्भर होना) mathematical problems that conventional (पारंपरिक, सामान्य) computers cannot solve efficiently; thus (इस प्रकार, इसलिए), the information is ‘hidden’ behind a lock whose key is the solution to such a problem. However, a sufficiently (पर्याप्त रूप से) capable quantum computer (a computer that exploits quantum mechanical phenomena, such as superposition and entanglement, to perform complex computations exponentially faster than classical computers) could use, say (उदाहरण के लिए, मान लीजिए), Shor’s algorithm (a process or set of rules to be followed in calculations or other problem-solving operations, especially by a computer; mathematical formula, program) to open this lock in minutes or hours. Symmetric cryptography (the practice and study of techniques for secure communication in the presence of adversarial behavior; code-making, encryption), such as AES encryption, is less threatened by the advent (आगमन, शुरुआत) of quantum computers but the existential exposure is nonetheless (फिर भी, तथापि) concentrated in public-key infrastructure (PKI; a set of roles, policies, hardware, software, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates and manage public-key encryption), which secures (protect, safeguard, defend, shield) everything from HTTPS to telecommunication networks. The shorter-term (occurring over or involving a relatively short period of time; near-term) problem is the possibility (chance, likelihood, probability, prospect) of a bad actor (a person, organization, or entity that acts with malicious intent, especially in cybersecurity or communications; malicious entity, rogue entity, cybercriminal) harvesting (collect, gather, acquire, accumulate (often referring to the “harvest now, decrypt later” cyberattack strategy)) encrypted data today and decrypting (decipher, decode, translate, unravel) them later using quantum computers. Post-quantum cryptography (PQC) (cryptographic algorithms (usually public-key algorithms) that are designed to be secure against a cryptanalytic attack by a quantum computer) is software that can run (operate, function, work, execute) on conventional computers (a traditional computer that processes data in binary states (0s and 1s) using classical physics, as opposed to quantum mechanics) but with the added benefit of resisting (withstand, combat, oppose, endure) attacks from quantum computers. The DST report recommends three post-quantum (relating to the era or technologies developing security measures resistant to the computational capabilities of quantum computers) standards finalised in 2024 to plan India’s efforts on the post-quantum effort and that it begin migrating (transition, move, shift, transfer) to this architecture (structure, design, framework, makeup). This prudent (wise, sensible, cautious, careful) advice must be followed, especially vis-à-vis (in relation to, with regard to, concerning, regarding) critical infrastructure (the basic physical and organizational structures and facilities needed for the operation of a society or enterprise; system, framework), financial services (economic services provided by the finance industry, encompassing a broad range of businesses that manage money, including banks and credit unions), power grids (an interconnected network for delivering electricity from producers to consumers), and defence.

The migration (transition, shift, movement, transfer) must continue even if “Q-day (a hypothetical future date when quantum computers become sufficiently powerful and fault-tolerant to successfully break current public-key cryptographic algorithms)” — when quantum computers practically endanger (put at risk, imperil, jeopardize, threaten) public-key cryptography — is pushed back (delay, postpone, defer, reschedule) from the report’s expected 2029. Indeed (absolutely, certainly, in fact, actually), experts disagree on this point, although the mainstream (conventional, ordinary, orthodox, prevailing) view is that both “Q-day” and migration will take at least a decade (a period of ten years). Cryptography is in practice (in reality, actually, practically, effectively) a set of dependencies (reliance, dependence, interconnection, linkage) often spread across — within, say, a ministry — databases, legacy hardware (older, outdated computing equipment or physical devices that are still in use despite being superseded by newer technologies), vendor software (commercial computer programs or applications provided by third-party suppliers or companies), authentication (verification, validation, confirmation, certification) protocols (procedure, set of rules, convention, code of conduct), and control systems. Thus, the challenges of the sprawling (spreading, extending, extensive, widespread) organisational transition (change, shift, conversion, transformation) must not be underestimated (undervalue, underrate, downplay, minimize). Moreover (furthermore, in addition, besides, additionally), since advanced AI can autonomously (independently, self-sufficiently, without human intervention) compromise (undermine, weaken, damage, expose to risk) the software layer today and quantum computers threaten the mathematics of encryption tomorrow, the threat surface (the total sum of vulnerabilities, pathways, or potential attack vectors through which an unauthorized user or bad actor can access a system or extract data; attack surface) is much larger than what “Q-day” alone portends (indicate, signify, foretell, foreshadow). The report recommends the wider adoption (implementation, application, embracing, integration) of PQC and, in environments (setting, platform, ecosystem, context) requiring higher security assurances (guarantee, promise, certainty, confidence), the more technically demanding quantum key distribution (QKD) (a secure communication method which implements a cryptographic protocol involving components of quantum mechanics, ensuring that any interception by an eavesdropper is immediately detectable) as well. For India, that means a new budgetary allocation (the amount of funding designated or set aside for a specific project or department within a financial budget; financial provision, funding allotment) of at least ₹5,000 crore; upgrading (improve, enhance, modernize, update) legacy infrastructure (outdated, older underlying systems, frameworks, or networks that are still in operation but may lack modern security capabilities) for interoperability; (the ability of computer systems or software to exchange and make use of information; compatibility, integration, connectivity) rationalising (reorganize, streamline, make more efficient, optimize) vendor dependence; (a situation where an organization is heavily reliant on a single external supplier for critical products or services, making it difficult to switch; vendor lock-in) and fostering (encourage, promote, nurture, support) and retaining (keep, maintain, preserve, hold on to) the human capital (workforce, personnel, staff, talent), as QKD engineers are rare today. India must also periodically (regularly, at intervals, from time to time, routinely) reassess (re-evaluate, review, rethink, re-examine) its needs considering (think about, contemplate, ponder, deliberate over) the acute (severe, critical, drastic, intense) trade-off QKD poses between security and operational efficiency (the ability of an organization to reduce waste in time, effort, and materials as much as possible while producing high-quality services or products; functional effectiveness, productivity, performance capability).

Courtesy: The Hindu

Important Word List With Meaning

1.thinking (noun)

Hindi Meaning - सोच
English Meaning - reasoning, thought process, perspective, approach.

2.alive to (adjective)

Hindi Meaning - सचेत, जागरूक
English Meaning - alert to, awake to, aware of, mindful of, heedful of, watchful of.

3.digital ecosystem (noun)

Hindi Meaning - डिजिटल पारिस्थितिकी तंत्र
English Meaning - an interconnected network of digital technologies, platforms, and services interacting to create value or function as a unit.

4.contemplate (verb)

Hindi Meaning - विचार करना, मनन करना
English Meaning - think about, consider, ponder, reflect on.

5.underpin (verb)

Hindi Meaning - आधार बनना, सहारा देना
English Meaning - support, base, form the foundation of, sustain.

6.online identity protection (noun)

Hindi Meaning - ऑनलाइन पहचान सुरक्षा
English Meaning - the safeguarding of personal and digital credentials from theft or unauthorized access on the internet.

7.secure communication (noun)

Hindi Meaning - सुरक्षित संचार
English Meaning - the transmission of data in a way that prevents interception, eavesdropping, or tampering by unauthorized third parties.

8.protective (adjective)

Hindi Meaning - सुरक्षात्मक, रक्षात्मक
English Meaning - defensive, safeguarding, shielding, preventive.

9.rest on (phrasal verb)

Hindi Meaning - आधारित होना, निर्भर होना
English Meaning - depend on, rely on, be based on, hinge on.

10.conventional (adjective)

Hindi Meaning - पारंपरिक, सामान्य
English Meaning - normal, standard, ordinary, traditional.

11.thus (adverb)

Hindi Meaning - इस प्रकार, इसलिए
English Meaning - therefore, consequently, hence, as a result.

12.sufficiently (adverb)

Hindi Meaning - पर्याप्त रूप से
English Meaning - adequately, enough, amply, satisfactorily.

13.say (verb)

Hindi Meaning - उदाहरण के लिए, मान लीजिए
English Meaning - used to give an example or state a possibility; for example, for instance, let us suppose.

14.advent (noun)

Hindi Meaning - आगमन, शुरुआत
English Meaning - arrival, appearance, emergence, dawn.

15.nonetheless (adverb)

Hindi Meaning - फिर भी, तथापि
English Meaning - nevertheless, however, in spite of that, yet.

16.quantum-safe (adjective)

English Meaning - resistant to attacks by quantum computers; secure against the computational power of future quantum systems.

17.existential exposure (noun)

English Meaning - vulnerability to threats that could completely destroy or render fundamentally insecure an organization’s core operations or technological foundation.

18.encryption (noun)

English Meaning - the process of converting information or data into a code, especially to prevent unauthorized access; coding.

19.algorithm (noun)

English Meaning - a process or set of rules to be followed in calculations or other problem-solving operations, especially by a computer; mathematical formula, program.

20.DST Task Force (noun)

English Meaning - a specialized committee constituted under the Department of Science and Technology (DST), Government of India, responsible for drafting the national roadmap (“Implementation of Quantum Safe Ecosystem in India”) to mandate and guide the phased transition of critical sectors to post-quantum cryptography.

21.cryptography (noun)

English Meaning - the practice and study of techniques for secure communication in the presence of adversarial behavior; code-making, encryption.

22.public-key cryptography (noun)

English Meaning - a cryptographic system that uses pairs of keys: public keys which may be disseminated widely, and private keys which are known only to the owner; asymmetric cryptography.

23.quantum computer (noun)

English Meaning - a computer that exploits quantum mechanical phenomena, such as superposition and entanglement, to perform complex computations exponentially faster than classical computers.

24.Shor’s algorithm (noun)

English Meaning - a quantum computing algorithm formulated by mathematician Peter Shor in 1994, capable of efficiently finding the prime factors of large integers, thereby theoretically enabling it to break widely-used public-key encryption schemes like RSA.

25.symmetric cryptography (noun)

English Meaning - a cryptographic method where the same digital key is used both to encrypt and decrypt the information.

26.Advanced Encryption Standard (AES) encryption (noun)

English Meaning - a widely-used symmetric block cipher standardized by NIST to protect sensitive digital data, utilizing the same cryptographic key for both encrypting and decrypting data.

27.public-key infrastructure (noun)

English Meaning - PKI; a set of roles, policies, hardware, software, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates and manage public-key encryption.

28.secure (verb)

English Meaning - protect, safeguard, defend, shield.

29.Hypertext Transfer Protocol Secure (HTTPS) (noun)

English Meaning - an extension of the HTTP protocol that uses encryption for secure communication over a computer network.

30.shorter-term (adjective)

English Meaning - occurring over or involving a relatively short period of time; near-term.

31.possibility (noun)

English Meaning - chance, likelihood, probability, prospect.

32.bad actor (noun)

English Meaning - a person, organization, or entity that acts with malicious intent, especially in cybersecurity or communications; malicious entity, rogue entity, cybercriminal.

33.harvest (verb)

English Meaning - collect, gather, acquire, accumulate (often referring to the “harvest now, decrypt later” cyberattack strategy).

34.encrypted data (noun)

English Meaning - information that has been converted into a secret code to hide its true meaning.

35.decrypt (verb)

English Meaning - decipher, decode, translate, unravel.

36.Post-quantum cryptography (PQC) (noun)

English Meaning - cryptographic algorithms (usually public-key algorithms) that are designed to be secure against a cryptanalytic attack by a quantum computer.

37.run (verb)

English Meaning - operate, function, work, execute.

38.conventional computer (noun)

English Meaning - a traditional computer that processes data in binary states (0s and 1s) using classical physics, as opposed to quantum mechanics.

39.resist (verb)

English Meaning - withstand, combat, oppose, endure.

40.post-quantum (adjective)

English Meaning - relating to the era or technologies developing security measures resistant to the computational capabilities of quantum computers.

41.migrate (verb)

English Meaning - transition, move, shift, transfer.

42.architecture (noun)

English Meaning - structure, design, framework, makeup.

43.prudent (adjective)

English Meaning - wise, sensible, cautious, careful.

44.vis-à-vis (preposition)

English Meaning - in relation to, with regard to, concerning, regarding.

45.infrastructure (noun)

English Meaning - the basic physical and organizational structures and facilities needed for the operation of a society or enterprise; system, framework.

46.financial service (noun)

English Meaning - economic services provided by the finance industry, encompassing a broad range of businesses that manage money, including banks and credit unions.

47.power grid (noun)

English Meaning - an interconnected network for delivering electricity from producers to consumers.

48.migration (noun)

English Meaning - transition, shift, movement, transfer.

49.Q-day (noun)

English Meaning - a hypothetical future date when quantum computers become sufficiently powerful and fault-tolerant to successfully break current public-key cryptographic algorithms.

50.endanger (verb)

English Meaning - put at risk, imperil, jeopardize, threaten.

51.push back (phrasal verb)

English Meaning - delay, postpone, defer, reschedule.

52.Indeed (adverb)

English Meaning - absolutely, certainly, in fact, actually.

53.mainstream (adjective)

English Meaning - conventional, ordinary, orthodox, prevailing.

54.decade (noun)

English Meaning - a period of ten years.

55.in practice (phrase)

English Meaning - in reality, actually, practically, effectively.

56.dependency (noun)

English Meaning - reliance, dependence, interconnection, linkage.

57.legacy hardware (noun)

English Meaning - older, outdated computing equipment or physical devices that are still in use despite being superseded by newer technologies.

58.vendor software (noun)

English Meaning - commercial computer programs or applications provided by third-party suppliers or companies.

59.authentication (noun)

English Meaning - verification, validation, confirmation, certification.

60.protocol (noun)

English Meaning - procedure, set of rules, convention, code of conduct.

61.sprawling (adjective)

English Meaning - spreading, extending, extensive, widespread.

62.transition (noun)

English Meaning - change, shift, conversion, transformation.

63.underestimate (verb)

English Meaning - undervalue, underrate, downplay, minimize.

64.moreover (adverb)

English Meaning - furthermore, in addition, besides, additionally.

65.Artificial Intelligence (AI) (noun)

English Meaning - the simulation of human intelligence processes by machines, especially computer systems.

66.autonomously (adverb)

English Meaning - independently, self-sufficiently, without human intervention.

67.compromise (verb)

English Meaning - undermine, weaken, damage, expose to risk.

68.threat surface (noun)

English Meaning - the total sum of vulnerabilities, pathways, or potential attack vectors through which an unauthorized user or bad actor can access a system or extract data; attack surface.

69.portend (verb)

English Meaning - indicate, signify, foretell, foreshadow.

70.adoption (noun)

English Meaning - implementation, application, embracing, integration.

71.environment (noun)

English Meaning - setting, platform, ecosystem, context.

72.assurance (noun)

English Meaning - guarantee, promise, certainty, confidence.

73.quantum key distribution (QKD) (noun)

English Meaning - a secure communication method which implements a cryptographic protocol involving components of quantum mechanics, ensuring that any interception by an eavesdropper is immediately detectable.

74.budgetary allocation (noun)

English Meaning - the amount of funding designated or set aside for a specific project or department within a financial budget; financial provision, funding allotment.

75.upgrade (verb)

English Meaning - improve, enhance, modernize, update.

76.legacy infrastructure (noun)

English Meaning - outdated, older underlying systems, frameworks, or networks that are still in operation but may lack modern security capabilities.

77.interoperability (noun)

English Meaning - the ability of computer systems or software to exchange and make use of information; compatibility, integration, connectivity.

78.rationalise (verb)

English Meaning - reorganize, streamline, make more efficient, optimize.

79.vendor dependence (noun)

English Meaning - a situation where an organization is heavily reliant on a single external supplier for critical products or services, making it difficult to switch; vendor lock-in.

80.foster (verb)

English Meaning - encourage, promote, nurture, support.

81.retain (verb)

English Meaning - keep, maintain, preserve, hold on to.

82.human capital (noun)

English Meaning - workforce, personnel, staff, talent.

83.periodically (adverb)

English Meaning - regularly, at intervals, from time to time, routinely.

84.reassess (verb)

English Meaning - re-evaluate, review, rethink, re-examine.

85.consider (verb)

English Meaning - think about, contemplate, ponder, deliberate over.

86.acute (adjective)

English Meaning - severe, critical, drastic, intense.

87.trade-off (noun)

English Meaning - a balance achieved between two desirable but incompatible features; compromise, balance, concession.

88.operational efficiency (noun)

English Meaning - the ability of an organization to reduce waste in time, effort, and materials as much as possible while producing high-quality services or products; functional effectiveness, productivity, performance capability.