Starting with quantum-resilient encryption support for the Linux application, NordVPN aims to implement post-quantum cryptography for all applications.
NordVPN, a leading cybersecurity company, launches its first VPN application with quantum-resilient encryption. The first iteration of post-quantum cryptography support for NordLynx is now available on the NordVPN Linux application. Additionally, the company plans to implement post-quantum algorithms on all NordVPN applications by 2025 Q1 at the latest.
“Trends show that cybercriminals are intensifying what are known as ‘harvest now, decrypt later’ attacks. Simply put, they are trying to accumulate huge quantities of encrypted data and decrypt them once quantum technology is developed. Thus, the VPN industry must enter a new phase of development to defend against future quantum computing threats. With this launch, we start a major transition to new generation encryption of all our applications, providing long-term security for our users,” says Marijus Briedis, CTO at NordVPN.
The recent announcement by NIST regarding the first post-quantum cryptographic standards is significant for the VPN industry as it signals the beginning of a necessary transition to quantum-resistant encryption methods. VPNs rely heavily on cryptographic protocols for securing communication, so the industry must now prepare to adopt these new standards to ensure long-term security against future quantum computer threats.
The rollout of the NordVPN Linux application with the first iteration of post-quantum cryptography will allow the company’s team of engineers to gather essential performance data, including its impact on connection times and speeds. Based on these insights, NordVPN aims to extend post-quantum cryptography support to all of their applications by 2025 Q1 at the latest.
Implementing post-quantum encryption in a VPN presents technical challenges. While security remains paramount, ensuring that post-quantum algorithms are performant enough for real-world deployment is equally critical. These algorithms typically require much larger key sizes and signatures than traditional ones, leading to increased computational overhead, which can negatively impact VPN speed and performance, particularly in high-throughput environments.
“These technical challenges are the reason for the gradual implementation of post-quantum cryptography support to our applications. We want to be completely sure that we will keep the highest level of user experience in terms of connection time and speed during the transition,” Briedis says.
Moreover, NordVPN aims to ensure that applications are both quantum-resistant and agile in cryptographic management. As cryptographic needs evolve, the demand for crypto-agility that enables systems to adapt to new cryptographic standards seamlessly will be essential.