Introducing Post-Quantum Cryptography (PQC) Code Signing to PRiSM

Director of Software Engineering – Security Solutions
2 minute read

Quantum computing

We are excited to announce a groundbreaking enhancement to PRiSM (Permission Rights Signing Manager), CommScope’s trusted cloud-based code signing platform: the addition of post-quantum cryptography (PQC) code signing capabilities, featuring algorithms selected by the National Institute of Standards and Technology (NIST).

As the quantum era looms closer, the integrity of signed code demands stronger defenses. By incorporating NIST standard PQC algorithms into PRiSM, we are helping to ensure that customers’ code remains secure—now, and in a future shaped by quantum computing.

What Is PQC Code Signing and Why Does It Matter?

Traditional public-key cryptography relies on algorithms like RSA or ECC, which are highly secure against today’s security threats. However, these methods will become vulnerable to attacks from quantum computers in the future, which could compromise traditional cryptographic signatures in a fraction of the time.

Post-quantum cryptography (PQC) introduces cryptographic algorithms designed to resist threats even from quantum computers. These quantum-resistant algorithms, carefully evaluated and standardized by NIST, help ensure that customers’ code remains secure and verifiable, even in the quantum computing era.

Why This Is a Game-Changer for PRiSM

For more than two decades, PRiSM has been a cornerstone in protecting software from malicious actors. Leveraging FIPS-certified Hardware Security Modules (HSMs) to protect signing and secret keys, PRiSM supports a broad array of standard and customized signing formats—including secure bootloader implementations for numerous chip vendors. By ensuring the authenticity and integrity of code, PRiSM has consistently delivered dependable security to customers around the globe.

Now, with the addition of PQC code signing, PRiSM is operating at the next level by offering:

  • Future-ready security: Signatures remain robust even in the face of quantum computing advancements.
  • NIST-approved algorithms: Have confidence in cryptographic standards developed through global collaboration and rigorous testing.
  • Seamless integration: PQC algorithms are integrated into PRiSM without disrupting existing workflows.
  • Flexible transition: Continue using traditional signing types for your existing products while transitioning to PQC signing for your new, quantum-ready products at your own pace.

Get Started with PQC Code Signing Now

Starting today, all customers can request PQC code signing capabilities to be integrated into their products. Whether deploying new software to connected devices or protecting critical enterprise applications, CommScope remains your trusted partner, delivering robust security for the quantum era.

Ready to future-proof your code? Contact us to learn more about PQC code signing or PRiSM platform.

Together, let’s build a quantum-secure future.