FAQ: Our Post Quantum Cryptography (PQC)
FortifyIQ delivers cryptographic IP and software libraries, and roots of trust that are validated, documented, and can be configured to help your products meet even the highest standards of security and regulatory compliance. Using our advanced EDA tools and closely guided integration support, we ensure that the protections validated in our labs are preserved in your actual devices. This approach gives you a trusted foundation for NIST FIPS 140-3 level 4, Common Criteria up to EAL6+, and industry-specific certifications, while reducing the complexity, time, and cost of achieving compliance. Together, these validations give customers the confidence that FortifyIQ technology provides enduring security for today and tomorrow, including the post-quantum era.
What are ML-KEM and ML-DSA?
ML-KEM and ML-DSA are post-quantum asymmetric cryptography primitives. ML-KEM (Key Encapsulation Mechanism) establishes shared secret keys, and ML-DSA (Digital Signature Algorithm) provides digital signatures. Together, they cover all asymmetric crypto needs.
What about AES and HMAC?
AES-256 encrypts data, and HMAC-SHA-512 ensures integrity and authenticity. Both are inherently PQC-ready and SCA/FIA resistant, completing a high-assurance, quantum-safe cryptographic stack.
What is hybrid cryptography, and why is it needed?
Hybrid cryptography supports both classical asymmetric algorithms (RSA/ECC) and post-quantum cryptography (ML-KEM/ML-DSA). Since asymmetric crypto is used between two devices, one side may be PQC-enabled while the other is still legacy. Hybrid solutions ensure secure communication across this transition. FortifyIQ provides hybrid IP cores and libraries combining classical + PQC + AES + HMAC, or any subset, all high-assurance, SCA/FIA resistant.
How flexible is integration?
FortifyIQ libraries and cores use a unified API for seamless HW/SW integration. Hardware soft macros are foundry-agnostic, synthesizable across standard CMOS nodes, and platform-independent. Software libraries are OTA-deployable, and asymmetric crypto (classical + PQC) is FOTA-updatable, allowing updates for emerging threats.
How secure are the libraries?
Using a patent-pending algorithmic protection method (from the same family as our AVA_VAN.5 AES), our PQC libraries were validated with >100,000 power traces, covering all stages including compression/decompression, which standard masking cannot protect. Our libraries are all SCA and FIA resistant, providing government-grade security.
Our in-house validation was achieved both in simulation and on a physical device with our advanced pre-silicon security evaluation tools (FortiEDA), and by third-party certification (in process).
How efficient are the libraries?
FortifyIQ libraries are optimized for minimal RAM and high-performance execution. Our algorithmic protection adds almost no size or speed penalty. Deployments scale from smart cards to edge AI and cloud systems. More details under NDA.
What is a Security Boutique?
FortifyIQ offers tunability to each device or user’s needs, including custom PPA, memory, and security levels. Products can be optimized for each device’s specific constraints and performance requirements.
Is the solution quantum-ready and compatible with Caliptra?
Yes, it’s quantum ready and compatible. Our hardware cryptographic algorithms are all designed to operate together as a single, coherent quantum-safe system, with seamless interoperability between classical, post-quantum, and symmetric cryptography. They are all side-channel and fault injection resistant, high-assurance security level compliant, and are all Caliptra-compatible, providing PQC readiness, outstanding PPA, certifiability, and complete configurability to Caliptra.
Still Have Questions?
Ask us!
