CINVESTAV-IPN's Computer Science Department hosted a seminar by Prof. Francisco Rodriguez-Henriquez on isogeny-based key exchange protocols. The talk reviewed Supersingular Isogeny-based Diffie-Hellman (SIDH) and Commutative Supersingular Isogeny-based Diffie-Hellman (CSIDH). Isogeny-based protocols offer short key sizes but have higher latency compared to other post-quantum cryptosystems. Why it matters: This seminar contributes to the exploration of post-quantum cryptography, an important area for ensuring data security against future quantum computing threats.
TII researchers contributed to the advancement of six digital signature schemes to Round 2 of the NIST Post-Quantum Cryptography (PQC) Standardization process. These schemes were selected from an initial pool of 40 candidates. TII researchers have contributed updates to these schemes, focusing on design refinements that reduced signature sizes while maintaining security. Why it matters: This contribution highlights the UAE's growing role in cutting-edge research areas like post-quantum cryptography, which is crucial for future digital security.
Abu Dhabi’s Technology Innovation Institute (TII) has launched the UAE's first Post-Quantum Cryptography (PQC) software library, developed by the Cryptography Research Center (CRC). The library, written in C, supports various computer architectures and operating systems and has been integrated into secure communication products. It includes algorithms designed to protect against attacks by quantum computers, which threaten classic cryptographic methods. Why it matters: This launch positions the UAE among nations with advanced digital security capabilities, enhancing data confidentiality and security in the face of emerging quantum computing threats.
The Technology Innovation Institute's (TII) Cryptography Research Center (CRC) has launched CLAASP, a cryptographic library for the automated analysis of symmetric primitives. CLAASP, built on SageMath and Python3, automates the design analysis of block ciphers, cryptographic permutations, hash functions, and stream ciphers. Released as an open-source tool with a GPLv3 license, CLAASP aims to ensure design sovereignty for organizations creating symmetric ciphers. Why it matters: This tool provides an important resource for the region to strengthen its cryptographic capabilities and contribute to global efforts in safeguarding digital infrastructure against evolving threats, including quantum computing.
Prof. Daniel Panario gave a seminar on irreducible polynomials over finite fields and their applications in cryptography. The seminar covered how finite fields are used as basic components in many cryptographic applications. It surveyed families of irreducible polynomials and commented on their properties. Why it matters: The talk highlights the mathematical foundations and ongoing research relevant to cryptographic implementations in the region.
The Technology Innovation Institute (TII) has launched the "TII McEliece Challenges," the UAE's first cryptography challenges focused on evaluating the McEliece cryptosystem's hardness. The challenges, led by TII’s Cryptography Research Center (CRC), will present cryptanalysis problems across three tracks: Theoretical Key Recovery Algorithms, Practical Key Recovery, and Message Recovery. Participants can compete for a share of a US$75,000 prize pool by identifying vulnerabilities in the McEliece system. Why it matters: This initiative aims to enhance online security, foster local talent in cryptography, and strengthen the UAE's position in post-quantum encryption research.
Researchers at TII, in cooperation with University Paderborn and Ruhr University Bochum, have discovered a vulnerability called the Opossum Attack in Transport Layer Security (TLS) impacting protocols like HTTP(S), FTP(S), POP3(S), and SMTP(S). The vulnerability exposes a risk of desynchronization between client and server communications, potentially leading to exploits like session fixation and content confusion. Scans revealed over 2.9 million potentially affected servers, including over 1.4 million IMAP servers and 1.1 million POP3 servers. Why it matters: This discovery highlights the importance of ongoing cybersecurity research in the UAE and internationally to identify and address vulnerabilities in fundamental internet protocols, especially as it led to immediate action by Apache and Cyrus IMAPd.
The Technology Innovation Institute's Cryptography Research Center (CRC) in Abu Dhabi has appointed a Board of Advisors comprised of global cryptography experts. The board includes Prof. Joan Daemen, Prof. Lejla Batina, Dr. Guido Bertoni, Prof. Carlos Aguilar, Prof. Damien Stehlé, and Prof. Tim Güneysu. The advisors will guide CRC's research efforts in areas like post-quantum cryptography and hardware-based cryptography. Why it matters: This move strengthens the UAE's position as a global hub for cryptography research and development, fostering innovation in this critical field.