Last week, we announced the interest demonstrated by several U.S. federal agencies in Veintree SAS’ technology. Part of their interest is particularly focused on our solution for post-quantum protection against the “data harvesting” of citizens' data.
Data harvesting is a method used to massively collect personal and sensitive data, either by copying data from servers containing sensitive information (hacking), or, which is even more worrisome, by intercepting data during its transmission to these same servers. It is therefore no longer necessary to penetrate servers in order to hack information, since copying the transmissions is enough.
The data collected in this way, even if encrypted, contains an abundance of sensitive information that can be decrypted later. Filling up server farms with this collected data, and then decrypting it, has become a risk-free sport for certain groups and nations whose intentions may be criminal or hostile.
With the fast-approaching advent of quantum computers and their vastly superior computing power, traditional cryptography methods will become obsolete. Therefore, we must respond with extremely robust solutions.
Citizens and consumers need to have confidence in the systems that transmit and store their data. Many regulations, such as the GDPR in Europe or the CCPA in California, require the protection of personal data from unauthorized access. Protecting against data harvesting in servers is a key step in complying with these regulations and avoiding legal sanctions, but the data harvesting of telecommunications presents considerable challenges to maintaining this trust, which is essential for users' collaboration and engagement with digital services.
Adopting at-edge post-quantum protection technologies, from the moment data is created and before it is transmitted, makes it possible to anticipate and prepare for these threats. Indeed, protecting people and their data is one of the key functions of the technology developed by Veintree.