Due to recent development in quantum computing, the invention of a large quantum computer is no longer a distant future. Quantum computing severely threatens modern cryptography, as the hard mathematical problems beneath classic public-key cryptosystems can be solved easily by a sufficiently large quantum computer. As such, researchers have proposed PQC based on problems that even quantum computers cannot efficiently solve. Generally, post-quantum encryption and signatures can be hard to compute. This could potentially be a problem for IoT, which usually consist lightweight devices with limited computational power. In this paper, we survey existing literature on the performance for PQC in resource-constrained devices to understand the severeness of this problem. We also review recent proposals to optimize PQC algorithms for resource-constrained devices. Overall, we find that whilst PQC may be feasible for reasonably lightweight IoT, proposals for their optimization seem to lack standardization. As such, we suggest future research to seek coordination, in order to ensure an efficient and safe migration toward IoT for the post-quantum era.

翻译：由于量子计算的最新发展，大型量子计算机的发明已不再是遥不可及的未来。量子计算对现代密码学构成了严重威胁，因为经典公钥密码体系所依赖的困难数学问题，可以被足够大的量子计算机轻易破解。为此，研究者提出了基于量子计算机也无法高效求解问题的后量子密码。一般而言，后量子加密与签名算法的计算量较大。这可能会对通常由计算能力有限的轻量级设备构成的物联网构成挑战。本文综述了现有关于资源受限设备中后量子密码性能的研究文献，以理解该问题的严重程度。我们还回顾了近期针对资源受限设备优化后量子密码算法的提案。总体而言，我们发现尽管后量子密码对较为轻量的物联网可能可行，但其优化方案似乎缺乏标准化。因此，我们建议未来研究寻求协同合作，以确保在量子时代后物联网实现高效且安全的迁移。