NonStop Insider

job types

Site navigation

Recent articles



For monthly updates and news.
Subscribe here
NonStop Insider

Harvest Now, Decrypt Later Problem – uLinga Products Enhanced to Provide Quantum Safe Encryption

By Hugo Bouderlique - Software Developer, and Andrew Price - Director, Business Operations



Whilst generally-supported opinion is that we are still a number of years away from functional quantum computers (or more accurately, Cryptographically Relevant Quantum Computers (CRQC)), there is a significant quantum computing-related problem that needs to be considered right now.

It is generally accepted that a functioning quantum computer may be available at some point in the next 5-10 years, so consideration needs to be given to whether those computers may be used to decrypt sensitive data being sent right now, using potentially breakable algorithms.

Quantum Computing and its impact on Cryptography

In Quantum Computing, data is encoded as qubits. Unlike regular bits, qubits encode data as a superposition of all computable states. In layman’s term, this means a qubit represents some probability of 0 and some probability of 1, while a regular bit can only either be 0 or 1. This property of qubits enable Quantum Computers to offer significant speed ups for some computations.

In 1994, computer scientist Peter Shor published his eponymous algorithm, Shor’s algorithm, which takes advantage of the properties of Quantum Computers to provide significant speed up to solving two related mathematics problem: prime factorization and discrete logarithm. These two problems happen to be the foundation of the most widespread asymmetric encryption algorithms currently in use: RSA, DH, ECDH, etc…

However, the development of current Quantum Computers is slow and current models are far from reaching the status of CRQC, a quantum computer powerful enough to represent a concrete threat to cryptography. Therefore, our current secured communication protocols are still safe for the moment.

Or are they?

“Harvest Now, Decrypt Later” attack

The idea behind “Harvest Now, Decrypt Later” attacks is to record encrypted traffic now and store it until a method becomes available to decipher the data.

For example, a TLS handshake and session recorded by an attacker in 2024 includes a key exchange using an algorithm such as Diffie-Hellman. Eventually, the attacker gains access to a CRQC, and uses Shor’s algorithm to break this Diffie-Hellman key exchange and obtain the shared secret. The attacker is now able to derive the symmetric encryption key used for the remainder for the session and decrypt all the data exchange between the two parties.

By the time we reach “Y2Q” (the time at which a CRQC becomes available), the data exchanged may not be relevant anymore: the credit card details used to make a payment have now expired, the private business project discussed in an email has now gone public, etc… but this is not the case for all data. For example, a parent filing their tax return may list all their children’s Social Security Numbers when declaring them as dependents, exposing them to identity theft.

The time to full quantum safety is the time it takes for developers to secure data plus the time it takes for data to become irrelevant. If this time is longer than the time it takes researchers to develop a CRQC, then data will be compromised.

Here’s a diagram illustrating the two different timelines. It shows a hypothetical timeline of post-quantum cryptography (PQC). Segments on the timeline represent pieces of information streamed, and how long they remain relevant for. The colour of the segment indicates what kind of cryptography was used at the time the data was sent over the network.  When Y2Q is reached, all data protected by classical algorithms is compromised, and data that was streamed long before Y2Q still ends up being compromised. However, the earlier PQC is adopted, the less likely data that is still relevant ends up being compromised.

What can be done against such attack?

The time needed for data to become irrelevant and the time needed to develop a CRQC are both out of our control. The only variable we can act upon is the time needed to secure data against quantum computing. For this reason, cryptographers and computer scientists are already hard at work devising new signature and key exchange algorithms that can resist quantum computers. Current work is focussed on one candidate for the key exchange algorithm, called CRYSTALS-Kyber, implemented with hybrid key exchanges.

In the case of TLS, two such hybrid key exchanges are under review as IETF drafts to become standard named groups. In accordance with NIST specifications, X25519Kyber768Draft00 and SecP256r1Kyber768Draft00 each combine a standardised ECDH curve with CRYSTALS-Kyber to provide both the security of modern key exchanges and our best effort at security against CRQC.

How do I protect my NonStop data?

Infrasoft takes the threat of quantum computing very seriously and has already implemented and made available these new hybrid key exchanges to users of our uLinga suite of products. Connections made over TLS, including Kafka and HTTPS, can now be negotiated to use these new algorithms. Most current browsers (including Chrome and Microsoft Edge support quantum safe algorithms, as does AWS and other cloud providers.  This means that users of WebCon, uLinga’s built-in browser-based user interface, can implement quantum safe encryption today. Similarly, customers using uLinga for Kafka to stream data to and from Kafka under AWS, can configure their systems to use quantum safe encryption.

You can find more information on the uLinga suite of products at

If you’d like to take a deeper look at the threat of Quantum Computing and its impact on all aspects of cryptography, on asymmetric encryption and beyond, we invite you to attend our session at this year’s Technical Boot Camp in September or to email us at to enquire.