后量子密码学（PQC）测试研究白皮书

Academic Editor: Osamu HirotaReceived: 13 January 2025Revised: 9 February 2025Accepted: 11 February 2025Published: 18 February 2025Citation: Zhang, M.; Wang, J.; Lai, J.;Dong, M.; Zhu, Z.; Ma, R.; Yang, J.Research on Development Progressand Test Evaluation of Post-QuantumCryptography. Entropy 2025, 27, 212.https://doi.org/10.3390/e27020212Copyright: © 2025 by the authors.Licensee MDPI, Basel, Switzerland.This article is an open access articledistributed under the terms andconditions of the Creative CommonsAttribution (CC BY) license(https://creativecommons.org/licenses/by/4.0/).ArticleResearch on Development Progress and Test Evaluation ofPost-Quantum CryptographyMeng Zhang 1,*, Jing Wang 1, Junsen Lai 1, Mingfu Dong 2, Zhenzhong Zhu 2, Ryan Ma 3 and Jun Yang 31China Academy of Information and Communication Technology (CAICT), Beijing 100191, China;wangjing15@caict.ac.cn (J.W.); laijunsen@caict.ac.cn (J.L.)2KOAL Software Co., Ltd., Shanghai 200072, China; dmf@koal.com (M.D.); zhuzz@koal.com (Z.Z.)3VIAVI Solutions Inc., Beijing 100102, China; ryan.ma@viavisolutions.com (R.M.);jun.yang@viavisolutions.com (J.Y.)*Correspondence: zhangmeng@caict.ac.cn; Tel.: +86-10-62300188Abstract: With the rapid development of quantum computing technology, traditionalcryptographic systems are facing unprecedented challenges. Post-Quantum Cryptography(PQC), as a new cryptographic technology that can resist attacks from quantum computers,has received widespread attention in recent years. This paper first analyzes the threat ofquantum computing to existing cryptographic systems, then introduces in detail the maintechnical routes of PQC and its standardization process. Then, a testing and evaluationsystem for PQC is proposed and relevant tests are carried out. Finally, suggestions forfuture development are put forward.Keywords: Post-Quantum Cryptography; development trends; testing and evaluation;standardization1. IntroductionQuantum computing has been theoretically proven to have the ability to crack publickey cryptography far beyond existing classical computing. In recent years, quantumcomputing technology has developed rapidly, especially with the introduction of quantumalgorithms such as Shor’s algorithm [1] and Grover’s algorithm [2], which enable quantumcomputers to crack the integer factorization problem (IFP) and the elliptic curve discretelogarithm problem (ECDLP) in polynomial time. This directly threatens widely used publickey encryption algorithms such as RSA and ECC.With the advancement of quantum computing technology, the information securitythreat of public key cryptography cracking is becoming increasingly imminent. The po-tential capabilities of quantum computers will not only damage the existing digital trustsystem, but may also bring a retroactive “harvest now, decrypt later” threat to sensitiveinformation that needs to be kept confidential for a long time. Therefore, responding tothe information security threat of quantum computing has become a hot t