Cloud

3/13/2018
04:10 PM
Connect Directly
Twitter
Twitter
RSS
E-Mail
100%
0%

What CISOs Should Know About Quantum Computing

As quantum computing approaches real-world viability, it also poses a huge threat to today's encryption measures.
Previous
1 of 11
Next

Image Source: Adobe Stock (zapp2photo)

Image Source: Adobe Stock (zapp2photo)

Quantum computing is quickly moving from the theoretical world to reality. Last week Google researchers revealed a new quantum computing processor that the company says may beat the best benchmark in computing power set by today's most advanced supercomputers.

That's bad news for CISOs because most experts agree that once quantum computing advances far enough and spreads wide enough, today's encryption measures are toast. General consensus is that within about a decade, quantum computers will be able to brute-force public key encryption as it is designed today.

Here are some key things to know and consider about this next generation of computing and its ultimate impact on security.

 

 

Ericka Chickowski specializes in coverage of information technology and business innovation. She has focused on information security for the better part of a decade and regularly writes about the security industry as a contributor to Dark Reading.  View Full Bio

Previous
1 of 11
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
grhooper
50%
50%
grhooper,
User Rank: Apprentice
11/1/2018 | 10:41:21 AM
No slideshows, please
The articles are helpful, but please just put the list on one page instead of creating a slideshow where I have to click everytime I want to read the next paragraph. It makes me want to just leave the site.
Egbert O'Foo
50%
50%
Egbert O'Foo,
User Rank: Apprentice
3/30/2018 | 10:32:48 AM
...
Hmm.  Certainly if we've learned anything from AI, it's that we'll need to ensure perfect accuracy before we can really rely on quantum computing.

Just in case it's not obvious to anyone (like it wasn't obvious to me) ... on the first page you may need to click on the image to start the slideshow and get to the content.
Julia Haleniuk
100%
0%
Julia Haleniuk,
User Rank: Apprentice
3/14/2018 | 9:24:03 AM
Good article!
Thank you for the great article, Ericka!
Russia Hacked Clinton's Computers Five Hours After Trump's Call
Robert Lemos, Technology Journalist/Data Researcher,  4/19/2019
Why We Need a 'Cleaner Internet'
Darren Anstee, Chief Technology Officer at Arbor Networks,  4/19/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-11537
PUBLISHED: 2019-04-25
In osTicket before 1.12, XSS exists via /upload/file.php, /upload/scp/users.php?do=import-users, and /upload/scp/ajax.php/users/import if an agent manager user uploads a crafted .csv file to the User Importer, because file contents can appear in an error message. The XSS can lead to local file inclu...
CVE-2019-9669
PUBLISHED: 2019-04-25
The Wordfence plugin 7.2.3 for WordPress allows XSS via a unique attack vector.
CVE-2018-12244
PUBLISHED: 2019-04-25
SEP (Mac client) prior to and including 12.1 RU6 MP9 and prior to 14.2 RU1 may be susceptible to a CSV/DDE injection (also known as formula injection) vulnerability, which is a type of issue whereby an application or website allows untrusted input into CSV files.
CVE-2018-18286
PUBLISHED: 2019-04-25
SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated attacker to conduct an SQL injection attack due to insufficient input validation for the changepwd interface. A successful exploit could allow an attacker to extract sensitive information from the database...
CVE-2019-9137
PUBLISHED: 2019-04-25
DaviewIndy 8.98.7 and earlier versions have a Integer overflow vulnerability, triggered when the user opens a malformed Image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.