TII researchers contributed to the advancement of six digital signature schemes to Round 2 of the NIST Post-Quantum Cryptography (PQC) Standardization process. These schemes were selected from an initial pool of 40 candidates. TII researchers have contributed updates to these schemes, focusing on design refinements that reduced signature sizes while maintaining security. Why it matters: This contribution highlights the UAE's growing role in cutting-edge research areas like post-quantum cryptography, which is crucial for future digital security.
KAUST professors Roberto Di Pietro and Marc Dacier co-authored a paper on cybersecurity strategies for Saudi Arabia and the Arab world, published in Communications of the ACM. The paper outlines a multidisciplinary framework for digitization aligned with Saudi Vision 2030, emphasizing global best practices, cultural adaptation, and capacity building. KAUST is positioned to advise on national cybersecurity policy in cooperation with the Saudi National Cybersecurity Authority. Why it matters: The framework addresses the critical need for advanced cybersecurity to support Saudi Arabia's rapidly growing digital economy and infrastructure.
Researchers at ETH Zurich have formalized models of the EMV payment protocol using the Tamarin model checker. They discovered flaws allowing attackers to bypass PIN requirements for high-value purchases on EMV cards like Mastercard and Visa. The team also collaborated with an EMV consortium member to verify the improved EMV Kernel C-8 protocol. Why it matters: This research highlights the importance of formal methods in identifying critical vulnerabilities in widely used payment systems, potentially impacting financial security for consumers in the GCC region and worldwide.
The National Institute of Standards and Technology (NIST) has been evaluating Post-Quantum Cryptography proposals since 2017. Lattice-based schemes have emerged as efficient candidates for Key Encapsulation Mechanisms (KEM) and Digital Signatures. This talk will cover the core operations within lattice-based schemes and efficient implementation strategies. Why it matters: As quantum computing advances, exploring and standardizing post-quantum cryptography is crucial for maintaining secure communication and data protection in the future.
The Digital Science Research Center (DSRC) has appointed Prof. David Naccache to its Board of Advisors for the Digital Security Unit. Prof. Naccache's experience includes cryptography and security, with prior roles at École Normale Supérieure (ENS) and Gemplus. He will provide external research assessment and foster collaboration between TII, ENS, RUHL and ULux. Why it matters: The appointment strengthens DSRC's digital security research capabilities through Prof. Naccache's expertise and academic network.
Dr. Abdelrahman AlMahmoud from TII's Secure Systems Research Center (SSRC) will participate in a WGISTA webinar on adopting a digital mindset in auditing and fighting corruption. The webinar, organized by the International Organization of Supreme Audit Institutions (INTOSAI), will discuss the impact of emerging technologies on public sector auditing. Dr. AlMahmoud will share insights on how AI and Big Data can enable auditors to process data at a new scale. Why it matters: This highlights the UAE's growing role in applying advanced technologies like AI and big data to improve governance and accountability in the public sector.