Please subscribe to our YouTube channel @ https://www.youtube.com/@DevoxxForever
Subscribe to LinkedIn @ https://www.linkedin.com/company/voxxed-days-amsterdam
Follow us on Twitter @ https://twitter.com/voxxedamsterdam

While we all get excited imagining the many happy path scenarios using quantum computers, what if such computation power will be employed for compromising the cryptographic algorithms that secure data and communications?
While Y2Q or Q-Day feels distant, bad actors steal currently unreadable encrypted data with the expectation of being able to decrypt in the future.

Java applications can resist classic and quantum attacks by adopting Hybrid Public Key Encryption (HPKE), a new standard that leverages asymmetric KEM, key derivation function (KDF), and authenticated encryption with additional data (AEAD) encryption. This talk covers the connection between these concepts, their implementation in the JDK security and demonstrates how can these be integrated to achieve secure quantum-resistant messaging in Java.

By the end of this talk you will understand how to take advantage of JDK security and toolchain capabilities (keytool, jfr) to fortify your application and withstand the quantum-era threats.

Devoxx

A conference talk by an Oracle Java developer advocate covering post-quantum cryptography threats and how Java developers can protect their applications. Explains the 'harvest now, decrypt later' attack strategy, the mathematical basis of lattice-based cryptography, and the three NIST post-quantum standards (ML-KEM, ML-DSA, SLH-DSA). Walks through JDK evolution from JDK 21 to JDK 27, including the KEM API, KDF API, ML-KEM, ML-DSA, and the upcoming post-quantum hybrid key exchange in TLS 1.3. Includes a live demo using Spring Pet Clinic with HTTPS/mutual TLS on JDK 27 early access, and covers JDK tools like keytool and JFR for auditing and profiling security events.

Secure Java Applications against Quantum Threats by Ana-Maria Mihalceanu