Uploaded image for project: 'OpenShift Container Platform (OCP) Strategy'
  1. OpenShift Container Platform (OCP) Strategy
  2. OCPSTRAT-2017

Evaluate Readiness Requirements for PQC in Cluster Infrastructure Components

XMLWordPrintable

    • Future Sustainability
    • OCPSTRAT-1858Support Post Quantum Cryptography 2025 requirements in OCP
    • False
    • Hide

      None

      Show
      None
    • False
    • None
    • None

      Feature Overview (aka. Goal Summary)  

      Evaluate the tasks associated with implementation of Post-Quantum Cryptography (PQC) across OCPCLOUD components (MAPI, CAPI, Cloud Controller Managers, Machine Health Check) for planning purposes. 

      Goals (aka. expected user outcomes)

      Thorough understanding of what changes are required to do for integration of PQC ciphers across OCPCLOUD components for the purposes of roadmap planning of action items in OCP 4.21 and 4.22. 

      Requirements (aka. Acceptance Criteria):

      • A list of impacted networking features and the responsible networking team
      • For each impacted feature, a list of work required and OpenShift release at which it must be completed (starting at 4.21)

       

      Deployment considerations List applicable specific needs (N/A = not applicable)
      Self-managed, managed, or both  
      Classic (standalone cluster)  
      Hosted control planes  
      Multi node, Compact (three node), or Single node (SNO), or all  
      Connected / Restricted Network  
      Architectures, e.g. x86_x64, ARM (aarch64), IBM Power (ppc64le), and IBM Z (s390x)  
      Operator compatibility  
      Backport needed (list applicable versions)  
      UI need (e.g. OpenShift Console, dynamic plugin, OCM)  
      Other (please specify)  

      Questions to Answer (Optional):

      •  

      Out of Scope

      •  

      Background

      • “If large-scale quantum computers are ever built, they will be able to break many of the public-key cryptosystems currently in use. This would seriously compromise the confidentiality and integrity of digital communications on the Internet and elsewhere.  The goal of post-quantum cryptography (also called quantum-resistant cryptography) is to develop cryptographic systems that are secure against both quantum and classical computers, and can interoperate with existing communications protocols and networks.”  ([Source|https://csrc.nist.gov/Projects/post-quantum-cryptography)]

       

              rh-ee-smodeel Subin M
              julim Ju Lim
              None
              Damiano Donati, Michael McCune, Mike Worthington
              Joel Speed Joel Speed
              Yang Yang Yang Yang
              Stephanie Stout Stephanie Stout
              Eric Rich Eric Rich
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: