Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Securing Cloud Computing Against Quantum Threats: Risk Assessment, Transition and Migration Strategies

Yaser Baseri, Abdelhakim Hafid, Arash Habibi Lashkari

TL;DR

This survey provides comprehensive analysis of quantum-safe cloud security, examining vulnerabilities, transition strategies, and layer-specific countermeasures across nine architectural layers, and delivers layer-specific threat taxonomies, likelihood-impact risk matrices, and CSP-informed deployment roadmaps for cloud architects, policymakers, and researchers.

Abstract

Quantum Computing (QC) threatens the cryptographic foundations of Cloud Computing (CC), exposing distributed infrastructures to novel attack vectors. This survey provides comprehensive analysis of quantum-safe cloud security, examining vulnerabilities, transition strategies, and layer-specific countermeasures across nine architectural layers (application, data, runtime, middleware, OS, virtualization, server, storage, networking). We employ STRIDE-based risk assessment aligned with NIST SP 800-30 to evaluate quantum threats through three transition phases: pre-transition (classical cryptography vulnerabilities), hybrid (migration risks), and post-transition (PQC implementation weaknesses including side-channel attacks). Our security framework integrates hybrid cryptographic strategies (algorithmic combiners, dual/composite certificates, protocol-level migration), cryptographic agility, and risk-prioritized mitigation tailored to cloud environments. We benchmark NIST-standardized PQC algorithms for performance and deployment suitability, assess side-channel and implementation vulnerabilities, and analyze quantum-safe strategies from leading CSPs (AWS, Azure, GCP). The survey delivers layer-specific threat taxonomies, likelihood-impact risk matrices, and CSP-informed deployment roadmaps for cloud architects, policymakers, and researchers. We identify six critical research directions: standardization and interoperability, hardware acceleration and performance optimization, AI-enhanced security and threat mitigation, integration with emerging cloud technologies, systemic preparedness and workforce development, and migration frameworks with crypto-agility.

Securing Cloud Computing Against Quantum Threats: Risk Assessment, Transition and Migration Strategies

TL;DR

This survey provides comprehensive analysis of quantum-safe cloud security, examining vulnerabilities, transition strategies, and layer-specific countermeasures across nine architectural layers, and delivers layer-specific threat taxonomies, likelihood-impact risk matrices, and CSP-informed deployment roadmaps for cloud architects, policymakers, and researchers.

Abstract

Quantum Computing (QC) threatens the cryptographic foundations of Cloud Computing (CC), exposing distributed infrastructures to novel attack vectors. This survey provides comprehensive analysis of quantum-safe cloud security, examining vulnerabilities, transition strategies, and layer-specific countermeasures across nine architectural layers (application, data, runtime, middleware, OS, virtualization, server, storage, networking). We employ STRIDE-based risk assessment aligned with NIST SP 800-30 to evaluate quantum threats through three transition phases: pre-transition (classical cryptography vulnerabilities), hybrid (migration risks), and post-transition (PQC implementation weaknesses including side-channel attacks). Our security framework integrates hybrid cryptographic strategies (algorithmic combiners, dual/composite certificates, protocol-level migration), cryptographic agility, and risk-prioritized mitigation tailored to cloud environments. We benchmark NIST-standardized PQC algorithms for performance and deployment suitability, assess side-channel and implementation vulnerabilities, and analyze quantum-safe strategies from leading CSPs (AWS, Azure, GCP). The survey delivers layer-specific threat taxonomies, likelihood-impact risk matrices, and CSP-informed deployment roadmaps for cloud architects, policymakers, and researchers. We identify six critical research directions: standardization and interoperability, hardware acceleration and performance optimization, AI-enhanced security and threat mitigation, integration with emerging cloud technologies, systemic preparedness and workforce development, and migration frameworks with crypto-agility.

Paper Structure

This paper contains 46 sections, 7 figures, 18 tables.

Table of Contents

  1. Introduction
  2. Related Work
  3. Survey Methodology and Literature Sourcing
  4. Organization
  5. Quantum-Safe Transition Risk Assessment Approach
  6. Risk Scoping and Preparation
  7. Conduct Assessment
  8. Identify Threat Sources and Events
  9. Identify Vulnerabilities and Predisposing Conditions
  10. Determine Likelihood of Occurrence
  11. Determine Magnitude of Impact
  12. Assess Risk
  13. Cryptographic Standards and : Cyber Impact and Risk Assessment
  14. Classic Cryptographic Standards and : Assessing Cyber Risks
  15. Quantifying Quantum Threats
  16. ...and 31 more sections

Figures (7)

  • Figure 1: Layered Architecture of a Stack, Highlighting Components Requiring Quantum-Resilient Security Evaluation
  • Figure 2: Organizational Structure of This Survey
  • Figure 3: Quantum-Safe Transition Risk Assessment Approach baseri2025blockchain
  • Figure 4: Qualitative Risk Assessment based on Likelihood and Impact Levels
  • Figure 5: Cumulative Expert Opinions Related to Quantum Threat to Classic Cryptography
  • ...and 2 more figures