Key points are not available for this paper at this time.
The implications of sufficiently large quantum computers for widely used-key cryptography is well-documented and increasingly discussed by the community. An April 2016 report by the National Institute of Standards Technology (NIST), notably, calls out the need for new standards to replace based on integer factorization and discrete logarithm problems, have been shown to be vulnerable to Shor's quantum algorithm for prime. Specifically, widely used RSA, ECDSA, ECDH, and DSA will need to be replaced by post-quantum cryptography (PQC) (also known as quantum-resistant or quantum-safe cryptography). to transition before sufficiently powerful quantum computers are will jeopardize the security of public key cryptosystems which are deployed within communication protocols, digital signing mechanisms, frameworks, and more. To avoid this, NIST has actively led a PQC effort since 2016, leveraging a large and international community. On January 31-February 1, 2019, the Computing Community Consortium (CCC) held workshop in Washington, D. C. to discuss research challenges associated with migration. Entitled, "Identifying Research Challenges in Post Quantum Migration and Cryptographic Agility", participants came from three yet related communities: cryptographers contributing to the NIST PQC effort, applied cryptographers with expertise in creating solutions and implementing cryptography in real-world settings, industry practitioners with expertise in deploying cryptographic standards products and compute infrastructures. Discussion centered around two key: identifying constituent challenges in PQC migration and imagining a new of "cryptographic agility".
Ott et al. (Mon,) studied this question.