Singapore gears up for post-quantum cryptography threats

Apart from the Cyber Security Agency of Singapore (CSA) releasing guidelines on post-quantum cryptography threats, Singtel has also launched Southeast Asia’s first Hybrid Quantum-Safe Network.

The Cyber Security Agency of Singapore (CSA) has released a Quantum-Safe Handbook and Quantum Readiness Index (QRI) to help organizations understand and prepare for post-quantum cryptography threats. Both these assets are currently available for public consultation.

Post-quantum cryptography threats include the risk that future quantum computers could break current public-key encryption, making sensitive data vulnerable. Attackers can use a "harvest now, decrypt later" strategy, intercepting and storing encrypted data today to decrypt it in the future. This jeopardizes secure communication, digital signatures, financial transactions, and the integrity of blockchains and IoT devices.

In August 2024, the US Department of Commerce’s National Institute of Standards and Technology (NIST) announced the first set of encryption algorithms designed to withstand cyberattacks from a quantum computer. The algorithms are specified in the first completed standards from NIST’s post-quantum cryptography (PQC) standardization project and are ready for immediate use.

In Singapore, CSA’s Quantum-Safe Handbook provides guidance for organizations in preparing for the quantum-safe transition. Developed by CSA, GovTech, and IMDA, in collaboration with leading technology companies, cybersecurity consultancies, and professional association, the handbook highlights key areas of focus and sets out practical considerations and resources for organizations to begin building readiness.

QRI aims to help organizations translate awareness into action. Featuring a self-assessment questionnaire, the QRI complements the Quantum-Safe Handbook. It helps system owners and security practitioners gauge their organization's state of readiness, prioritize key actions, and facilitate informed discussions with senior management.

Singtel’s Hybrid Quantum-Safe Network

Apart from the initiatives by CSA, Singtel has launched the region’s first Hybrid Quantum-Safe Networks (QSN) that integrates Quantum Key Distribution (QKD) with Post-Quantum Cryptography (PQC). This layered approach delivers cost-efficient, flexible, and globally extensible protection against emerging quantum threats.

Singtel’s Hybrid QSN extends protection beyond core data centers and mission-critical sites to branch offices, remote facilities, cloud environments and overseas operations. To extend QKD-protected critical links, hybrid QSN uses PQC-based key distribution to ensure quantum-safe protection to a broader footprint. The hybrid architecture enables enterprises to secure all parts of their organization.

According to Ng Tian Chong, Chief Executive Officer, Singtel Singapore, Quantum computing represents one of the greatest opportunities of this decade – from curing diseases to predicting climate change and boosting productivity – but it also presents one of its biggest risks.

“It could break today’s encryption standards, the very foundation of digital trust in our connected world. As a critical infrastructure services provider, Singtel has been helping enterprises anticipate, defend and manage emerging threats so they can innovate and scale securely. Our Hybrid Quantum-Safe Network gives enterprises a practical and scalable way to protect their most sensitive data while preparing for what’s next,” said Chong.

Chong also encouraged businesses to explore ways to safeguard and future-proof their operations in the digital economy and to reach out to Singtel.

Singtel's Hybrid QSN provides an array of flexible deployment options and service models that leverages ID Quantique's (IDQ) QKD and key management platform to securely distribute encryption keys, as well as Palo Alto Networks' PQC solution, a software-based feature that adds quantum-safe encryption to existing infrastructure which helps enterprises to adopt a more proactive and accelerated approach to quantum readiness.

Singtel also signed a Memorandum of Understanding with Palo Alto Networks to extend Singtel QSN through Palo Alto Networks’ PQC solution. Through this collaboration, Singtel will offer Hybrid QSN as a managed security service.

“The threat of quantum computing is very real, and our customers are looking for a practical way to help future-proof their networks against this emerging risk. By bringing together our advanced quantum security solutions and Singtel’s hybrid quantum-safe network, we're providing a scalable and flexible way for enterprises to extend critical protection from their core data centers to their remote and international locations. This collaboration gives organizations a powerful, software-based solution to defend their data today and well into the quantum era,” commented Simon Green, President, Asia-Pacific and Japan, Palo Alto Networks.