Blog

The National Security Agency recently discovered a major cryptographic flaw in Microsoft’s low-level code within their operating system. This flaw, now known as CurveBall, was found within Windows CryptoAPI and effects the way Elliptic Curve Cryptography (ECC) x.509 certificates are validated, giving attackers the ability to “undermine how Windows verifies cryptographic trust,” as stated in the NSA’s Cybersecurity Advisory on this issue.

On 14th January 2020, Microsoft released a software update to fix this serious security vulnerability. Yet, due to the potentially severe nature of this vulnerability, they first made the patch available to the US government, military and “other high-value customers/targets that manage key Internet infrastructure.” If exploited by attackers, it would give them the ability to spoof digital signatures, essential for digital security and trust.

Initially reported by Brian Krebs at KrebsOnSecurity, this story has since made headlines in major news outlets, such as the Washington Post, Tech Crunch, and Wired, all of which include public comments from Anne Neuberger, director of the NSA’s Cybersecurity Directorate.

Continue Reading

Part of our mission at ISARA is to educate and raise awareness of the security risks introduced by large-scale quantum computing. Since I joined ISARA in 2016, I’ve spoken to individuals, enterprises, and governments around the world, and along the way, I’ve heard some incorrect assumptions about the impact of the quantum threat and what can be done about it today.

Continue Reading

By Paul Lucier, VP of Sales and Business Development, ISARA Corporation

Published on July 2, 2019

Awareness is spreading about the threat that large-scale quantum computing poses to current public key cryptography, and both nation-states and security professionals are taking note.

Over the last six months, we have seen a significant increase in discussion and investment in quantum-safe security development and testing.

Continue Reading

Our team at ISARA was recently awarded further funds for our research and development of quantum-safe cryptography and agile technologies. In this blog post, Mike Brown shares how this funding will support ISARA’s corporate goals.

Continue Reading

Quantum technologies are poised to benefit our world for the better (and in some ways for worse), but in what specific ways? Martin Laforest explores 5 ways quantum computing will change our world.

Continue Reading

On March 7, ISARA Corporation’s Chief Technology Officer & Co-Founder, Mike Brown, was invited to join The Georgian Impact Podcast hosted by Jon Prial. This podcast allows entrepreneurs to recognize opportunities and threats that they are facing in the technology industry.

Continue Reading

Jacquelyn Parker, ISARA’s Vice President of Operations, has always carved out her own path, both professionally and personally. Learn more about her career in STEM in celebration of International Women’s Day 2019.

Continue Reading

Best practices for cryptography evolve with time and staying secure sometimes requires immediate reaction. The transition to Elliptic Curve Cryptography specified by the US National Security Agency’s 2005 “Suite B” recommendation included a comfortable transition period. However, in August 2015 the NSA unexpectedly publicized a report recommending that any institutions which had still not completed the transition to Suite B schemes should continue using the older schemes and instead prepare for an upcoming transition to quantum-safe cryptography.

Continue Reading

Every advancement in quantum computing brings us closer to the positive and negative disruptions this revolutionary technology promises. Though a large-scale quantum computer is not here yet, its future arrival already puts many aspects of information security at risk today because of “harvest-and-decrypt” attacks, for example, where adversaries collect and store encrypted data with the intention of decrypting it in the future.

Now, business leaders recognize that they need to start preparing and are asking how they can become ‘quantum-ready.’

For security leaders, protecting your organization’s critical assets, products and confidential data using a quantum-safe method is essential. We will discuss two such approaches: quantum-safe cryptography and quantum key distribution.

Continue Reading

Scott Totzke, CEO & Co-founder of ISARA, talks about what our recent Series A investment announcement means for the future of ISARA and quantum-safe security.

Continue Reading