NIST has announced the selection of a new encryption algorithm, HQC, as a backup to ML-KEM, the primary standard for general encryption against future quantum threats. This move ensures a secondary line of defense in case vulnerabilities are discovered in ML-KEM. HQC is based on a different mathematical foundation, known as error-correcting codes, contrasting with ML-KEM’s structured lattice approach. A draft standard for HQC is expected in about a year, with finalization anticipated by 2027.
Post-quantum cryptography aims to protect sensitive digital information from the potential capabilities of quantum computers, which could break traditional encryption methods. NIST has been working on quantum-resistant encryption for over eight years and finalized three post-quantum cryptographic standards in 2024, including ML-KEM for general encryption and two digital signature algorithms.
While ML-KEM remains the recommended choice, HQC provides an alternative in case quantum advancements reveal weaknesses in the current standard.
HQC’s mathematical foundation in error-correcting codes has long been used in information security. Although the algorithm is more computationally demanding than ML-KEM, its security and reliability made it a strong candidate for selection.
The decision underscores NIST’s strategy of diversifying encryption approaches to adapt to evolving cryptographic threats.
The selection of HQC is part of NIST’s ongoing Post-Quantum Cryptography project, which has been active since 2016. The agency continues to develop and refine standards to ensure long-term security for internet communications, financial transactions, and national security data. Organizations are encouraged to continue migrating to the finalized post-quantum encryption standards while staying informed about future developments in quantum-resistant cryptography.
Reference:
