Cryptographic transitions

Abstract

A cryptographic transition is defined as managing the passage from one security architecture to another in a methodical approach that is consistent with prudent business practices and security guidelines. This paper addresses the three technology issues that drive the business and security justifications for initiating a transition; the principles guiding policy and practices when conducting a transition; the process to conduct a successful transition; and provides the pros and cons of several actual case studies of cryptographic transitions.