Post-Quantum Security in Communication Protocols:
The Road Ahead with QUAS
Prof. Mauro Conti
University of Padua / SpritzMatter
(On behalf of the QUAS project consortium)
Quantum computing introduces a serious challenge to the cryptographic foundations of today’s communication systems. Current protocols that secure everything from web traffic to voice calls could be vulnerable to quantum attacks. This has led to a global push to develop cryptographic solutions that remain secure even in a post-quantum world. The QUAS project, a pioneering initiative supported by the PQ-REACT program, is at the forefront of addressing this challenge.
Led by SpritzMatter, a Spin-Off of the University of Padua, founded by Professor Mauro Conti, and Duncan Main of Edentify Foundation MTU, Estonia, the QUAS project is focused on integrating post-quantum cryptography (PQC) into widely used communication protocols, such as QUIC and SIP. These protocols, which power much of our online communication and real-time services, need to evolve to be quantum-resistant to protect against the capabilities of future quantum computers. QUAS seeks to do so by embedding PQC mechanisms into these protocols, ensuring that they remain secure while still maintaining their performance and scalability.
At its core, QUAS utilizes a hybrid cryptographic approach. By combining classical cryptographic methods with quantum-resistant algorithms, QUAS ensures compatibility with existing infrastructure. This hybrid approach allows for a smooth transition to quantum-safe systems without disrupting current operations. The QUAS team has already demonstrated that such hybrid solutions can be integrated into the QUIC protocol, ensuring both security and efficiency, even as the demand for scalability increases.
Experimental evaluation has demonstrated strong performance characteristics, including throughput exceeding 4 MB/s with stable CPU and memory usage under increasing workloads.
In addition to securing QUIC, QUAS is extending its reach to SIP (Session Initiation Protocol), which is widely used for real-time communication like voice over IP (VoIP). By incorporating quantum-safe signatures into SIP signaling, QUAS aims to safeguard the integrity and authentication of real-time communication systems, such as voice and video calls, from potential quantum threats.
QUAS represents a crucial advancement for businesses and society in preparing for the quantum future. By adopting post-quantum cryptographic solutions now, organizations can ensure they are better equipped for the challenges of tomorrow. QUAS not only addresses the immediate security risks posed by quantum computing but also ensures that the adoption of these solutions is as seemless and efficient as possible.
Ultimately, the QUAS project shows that securing communication protocols against quantum threats is no longer a distant concern. With its innovative hybrid cryptographic solutions, QUAS is paving the way for more secure, future-proof communication systems. As quantum technology continues to evolve, QUAS stands as a practical demonstration that post-quantum security is both necessary and achievable.
This project has received funding from the European Union’s Horizon Europe research and innovation programme under grant agreement No. 101119547 (PQ-REACT Open Call). Funded by the European Union. Views and opinions expressed are however those of the author(s) only and do not necessarily reflect those of the European Union or PQ-REACT. Neither the European Union nor the granting authority can be held responsible for them.
Further resources
A reference implementation demonstrating post-quantum SIP signaling using hybrid TLS is available at:
https://github.com/kacimo22/QSIP