Commvault boosts quantum-resilient security for data defence

Commvault has introduced expanded post-quantum cryptography capabilities intended to assist customers in safeguarding data against emerging security threats related to quantum computing.

The company has enhanced its cryptographic agility framework by adding support for Hamming Quasi-Cyclic (HQC), an error correcting code-based algorithm designed to guard against the risk that encrypted information intercepted today could be decrypted in the future using quantum computers.

Quantum risks

Quantum computing is expected to create new cybersecurity risks, with industry surveys highlighting widespread concern among technology professionals. According to the Information Systems Audit and Control Association's Quantum Computing Pulse Poll, 63% of technology and cybersecurity professionals anticipate that quantum computing will increase or shift cybersecurity risks, and 50% believe it may introduce regulatory and compliance challenges.

Commvault has provided support for quantum-resistant encryption standards such as CRYSTALS-Kyber, CRYSTALS-Dilithium, SPHINCS+, and FALCON, as recommended by the National Institute of Standards and Technology (NIST), since August 2024. Customers are able to address new security threats through Commvault's cryptographic agility features integrated into the Commvault Cloud platform.

Bill O'Connell, Chief Security Officer at Commvault, said,

"The quantum threat isn't theoretical. We were among the first cyber resilience vendors to address post-quantum computing, and by integrating new algorithms like HQC and advancing our crypto-agility framework, we are providing our customers with the tools to navigate this complex landscape with confidence. Our goal is simple and clear: as quantum computing threats emerge, we intend to help our customers keep their data protected."

Industry applications

Sectors such as finance and healthcare, where regulations and the need for long-term data protection are stringent, are expected to benefit from the expanded post-quantum cryptography capabilities. Commvault Cloud's Risk Analysis tools allow customers to classify data and apply new cryptographical measures as required, with an emphasis on ease of implementation through simple configuration settings.

Phil Goodwin, Research VP at IDC, commented,

"Quantum readiness has become a business imperative, particularly for industries which handle data that remains sensitive for decades. The time when currently encrypted data can be decrypted using quantum technology is closer than many people think. Commvault's early adoption of quantum-resistant cryptography and commitment to crypto-agility positions it at the forefront among data protection software vendors in proactively addressing quantum threats. Organizations with sensitive, long-term data need to prepare now for a quantum world."

Commvault customers have also underlined the significance of these upgrades. Jeff Day, Deputy Chief Information Security Officer for the Nevada Department of Transportation, stated,

"Commvault has been an invaluable partner in our journey to enhance cyber resilience. Their leadership in adopting post-quantum cryptography, combined with their crypto-agility framework, is exactly what we need to meet stringent government security mandates and protect highly sensitive information from emerging quantum threats."

Peter Hands, Chief Information Security Officer at the British Medical Association, added,

"Safeguarding sensitive data is paramount, and the long-term threat of quantum decryption is a significant concern. Commvault's rapid integration of NIST's quantum-resistant standards, particularly HQC, gives us great confidence that our critical information is protected now and well into the future. Their commitment to crypto-agility is important for healthcare organizations like ours."

Availability

Commvault's expanded post-quantum cryptography capabilities, including support for the HQC algorithm, are available to Commvault Cloud customers using software version CPR 2024 (11.36) or newer.