As quantum computing advances, modern cryptographic standards face an existential threat, necessitating a transition to post-quantum cryptography (PQC). The National Institute of Standards and Technology (NIST) has selected CRYSTALS-Kyber and CRYSTALS-Dilithium as standardized PQC algorithms for secure key exchange and digital signatures, respectively. This study conducts a comprehensive performance analysis of these algorithms by benchmarking execution times across cryptographic operations such as key generation, encapsulation, decapsulation, signing, and verification. Additionally, the impact of AVX2 optimizations is evaluated to assess hardware acceleration benefits. Our findings demonstrate that Kyber and Dilithium achieve efficient execution times, outperforming classical cryptographic schemes such as RSA and ECDSA at equivalent security levels. Beyond technical performance, the real-world deployment of PQC introduces challenges in telecommunications networks, where large-scale infrastructure upgrades, interoperability with legacy systems, and regulatory constraints must be addressed. This paper examines the feasibility of PQC adoption in telecom environments, highlighting key transition challenges, security risks, and implementation strategies. Through industry case studies, we illustrate how telecom operators are integrating PQC into 5G authentication, subscriber identity protection, and secure communications. Our analysis provides insights into the computational trade-offs, deployment considerations, and standardization efforts shaping the future of quantum-safe cryptographic infrastructure.
翻译:随着量子计算技术的发展,现代密码标准面临生存性威胁,亟需向后量子密码(PQC)过渡。美国国家标准与技术研究院(NIST)已选定CRYSTALS-Kyber和CRYSTALS-Dilithium分别作为安全密钥交换与数字签名的标准化PQC算法。本研究通过对密钥生成、封装、解封装、签名及验证等密码操作进行执行时间基准测试,对这些算法开展了全面的性能分析。同时,评估了AVX2优化对硬件加速效益的影响。研究结果表明,在同等安全级别下,Kyber与Dilithium实现了高效的执行时间,其性能优于RSA和ECDSA等经典密码方案。除技术性能外,PQC的实际部署在电信网络中面临多重挑战,包括大规模基础设施升级、与传统系统的互操作性以及监管限制等问题。本文探讨了电信环境中采用PQC的可行性,重点分析了关键过渡挑战、安全风险与实施策略。通过行业案例研究,我们阐释了电信运营商如何将PQC集成至5G认证、用户身份保护及安全通信中。本分析从计算权衡、部署考量及标准化推进等维度,为塑造量子安全的密码基础设施未来提供了见解。