Quantum computing is emerging as an unprecedented threat to the current state of widely used cryptographic systems. Cryptographic methods that have been considered secure for decades will likely be broken, with enormous impact on the security of sensitive data and communications in enterprises worldwide. A plan to migrate to quantum-resistant cryptographic systems is required. However, migrating an enterprise system to ensure a quantum-safe state is a complex process. Enterprises will require systematic guidance to perform this migration to remain resilient in a post-quantum era, as many organisations do not have staff with the expertise to manage this process unaided. This paper presents a comprehensive framework designed to aid enterprises in their migration. The framework articulates key steps and technical considerations in the cryptographic migration process. It makes use of existing organisational inventories and provides a roadmap for prioritising the replacement of cryptosystems in a post-quantum context. The framework enables the efficient identification of cryptographic objects, and can be integrated with other frameworks in enterprise settings to minimise operational disruption during migration. Practical case studies are included to demonstrate the utility and efficacy of the proposed framework using graph theoretic techniques to determine and evaluate cryptographic dependencies.

翻译：量子计算正对当前广泛使用的密码系统构成前所未有的威胁。几十年来被认为安全的密码方法很可能会被攻破，对全球企业的敏感数据和通信安全产生巨大影响。因此，需要制定迁移到抗量子密码系统的计划。然而，将企业系统迁移至量子安全状态是一个复杂的过程。企业需要系统性指导来完成这一迁移，以在后量子时代保持韧性，因为许多组织缺乏具备独立管理此流程专业知识的员工。本文提出一个旨在帮助企业进行迁移的综合框架。该框架阐述了密码迁移过程中的关键步骤和技术考量，利用现有组织资产清单，并提供在后量子背景下优先替换密码系统的路线图。该框架能够高效识别密码对象，并可与企业环境中的其他框架集成，以最小化迁移期间的运营中断。文中包含实际案例研究，通过图论技术确定和评估密码依赖关系，展示了所提议框架的实用性和有效性。