PQShield
Overview
Quantum Ready with PQShield
Post-quantum cryptography is based on different mathematical foundations than traditional RSA and Elliptic Curve algorithms. Quantum-resistant lattice-, code-, and multivariate algorithms do not benefit from the "big integer" hardware acceleration features available in traditional smart cards and secure elements.
PQShield is a post-quantum pioneer and participant in NIST's post-quantum cryptography standardization process. They have a deep understanding of the algorithms' computational and mathematical requirements, which has led to significant architectural and design innovations in hardware implementations. PQShield helps customers transition their product lines from legacy RSA and Elliptic Curve cryptography to quantum-secure standards by offering ready-made and tailored IP for secure elements, IoT firmware, PKI and server technologies, and end-user applications.
PQShield on Microchip Platform
PQShield has ported the entire PQSLIB3 algorithm suite on Microchip's PolarFire SoC FPGA. High-level functions and API calls run on the PolarFire SoC FPGA's hardened RISC-V cores, while specific cryptographic tasks can be offloaded to the FPGA fabric as required by low-latency or high-throughput applications. The PQSLIB3 algorithm suite currently consists of more than 100 official parameter sets of 11 NIST final-round Post-Quantum signature and key establishment algorithms (https://pqsoc.com/faq/#which-algorithms-are-supported).
PQShield offers scalable HDL IP cores that significantly speed up post-quantum algorithms and has commercial experience with kernel drivers, OpenSSL API support, and integration into VPN, HSM, and industrial automation applications.
Standards-compliant Post-Quantum and Classical Crypto IP for FPGA:
- PQC Mathematics Co-processor reduces latency and power consumption of post-quantum cryptography computations while maintaining flexibility for algorithmic refinement. Scalable and modular design.
- Secondary cryptography co-processor supports symmetric encryption algorithms (AES), hash functions (SHA3, hash-based cryptography), legacy RSA and ECC, and secure random-number generation.
- Peripherals and interfaces for persistent key storage, communication, development, and testing against CAVP and FIPS 140-3.
- Implemented mainly in synthesizable Verilog (and SystemVerilog formal assertions), proven in hardware simulations and fast FPGA.
Post-Quantum Embedded Software:
PQSLIB is a library of post-quantum cryptographic primitives that can utilize the hardware blocks' computational features. The implementations match current NIST post-quantum standardization versions for digital signatures, key establishment, and encryption. These algorithms can be used to replace or complement legacy cryptography; PQShield offers cryptologic design and security evaluation expertise for their integration into applications.
Out-of-box algorithm support: KYBER, NTRU, SABER, Classic McEliece, SIKE, FrodoKEM, DILITHIUM, FALCON, RAINBOW, SPHINCS+, XMSS
- All NIST PQC Finalists, prominent Alternative candidates, SP 800‐208 XMSS.
- Most algorithms significantly benefit from hardware acceleration and protection.
- Tidy, uniform APIs. Small‐footprint C code, no external dependencies (bare metal targets ok).
- Focus on hardware‐software codesign support, formal verification, flexibility.
- Compliance suites, including best available 3rd round test vector data.
- Tested: RISC‐V RV32/RV64 + hardware, but also Intel AMD64/i386, ARMv7/ARMv8 (Aarch64).
- Advanced features such as ETSI TS 103 744 (Quantum‐safe Hybrid KEX).
- Available. PQShield Commercial License – supplied & maintained from the UK.
Company's Address and Contact information:
PQShield Ltd.,
Prama House,
Banbury Road,
OX2 7HT, Oxford, UK.
Email: licensing@pqshield.com
Website: https://pqshield.com/