Akeyless, creator of the unified secrets and machine identity platform, announced the implementation of advanced quantum-resilient encryption across its solution, becoming the first secrets management provider to deploy post-quantum protection.
As quantum computing advances rapidly, organizations face an immediate security challenge: sophisticated attackers are already harvesting encrypted data today with plans to decrypt it once quantum computers mature. This “harvest now, decrypt later” strategy threatens sensitive information across financial services, healthcare, and government sectors where data confidentiality requirements extend decades into the future.
“Organizations managing sensitive credentials and encryption keys face a critical timeline issue,” said Refael Angel, Co-founder and CTO at Akeyless. “The quantum threat isn’t theoretical, it’s actively evolving. Our solution ensures that encryption with our unified platform remains secure not just today, but well into the post-quantum era.”
The security enhancement is implemented within the Akeyless Gateway, with no changes required to the Akeyless environment configuration. Organizations can begin benefiting from this advanced protection once their client-side components support the necessary protocols.
Also Read: Lumen and IBM Collaborate to Unlock Scalable AI for Businesses
Akeyless delivers a comprehensive approach to secrets management by addressing the complexity and cost associated with managing multiple fragmented solutions. The platform consolidates API keys, database credentials, certificates, encryption keys, and other secrets and non-human identities within one secure platform.
The quantum-resilient capability leverages hybrid TLS 1.3 encryption that combines X25519 elliptic-curve key exchange algorithm for current strong security and ML-KEM768 quantum-resistant algorithm selected by NIST for future protection.
This hybrid approach securely establishes a shared secret between parties during the initial handshake process, ensuring that even if attackers intercept and store encrypted data now, they cannot decrypt it later using quantum computing capabilities. The implementation is handled at the Gateway level, with hybrid key exchange processed during the standard TLS 1.3 handshake.
“Our customers across regulated industries with the most demanding security requirements can now operate with confidence that their sensitive credentials are protected against both current and future threats,” noted Angel. “By offering quantum-resistant security today, we’re helping organizations prepare for tomorrow’s challenges.”
This innovation extends the platform’s existing enterprise-grade security features, which include patented DFC technology that eliminates the need for a master encryption key and ensures complete control over your secrets.
The Akeyless platform continues to provide a seamless experience for customers with single-solution management for all secrets and machine identities, dynamic secrets for just-in-time access, automatic secret rotation, credential injection, and real-time access controls.
Source: PRNewswire