NSA Releases Future Quantum-Resistant (QR) Algorithm Requirements for National Security Systems > National Security Agency/Central Security Service > Article
Summary: The NSA has released the Commercial National Security Algorithm Suite 2.0 (CNSA 2.0) to prepare National Security Systems (NSS) for the threat posed by cryptanalytically relevant quantum computers (CRQC).
This advisory outlines the NSA's requirements for transitioning to quantum-resistant (QR) algorithms, collectively known as the CNSA 2.0 suite. The transition is designed to protect National Security Systems (NSS) against the future deployment of cryptanalytically relevant quantum computers (CRQC) capable of breaking current public-key encryption. The document details specific algorithms for software/firmware signing (LMS and XMSS), symmetric-key updates, and general-use public-key algorithms (CRYSTALS-Kyber and CRYSTALS-Dilithium). It establishes a phased transition timeline, with a goal for full implementation by 2035, and emphasizes that CNSA 1.0 remains the current standard until validated solutions are available.
Document outline
1. Executive Summary 2. Introduction 3. Algorithms for software- and firmware-signing (LMS, XMSS) 4. Symmetric-key algorithms (AES, SHA) 5. General-use quantum-resistant public-key algorithms (CRYSTALS-Kyber, CRYSTALS-Dilithium) 6. Timing and Transition Requirements 7. Enforcement and Compliance 8. Additional Guidance: RFCs 9. Appendix: Reference Tables (CNSA 2.0 vs CNSA 1.0)