Written by Champion and Author Weiyee In, Chief Information Officer, Protego Trust Bank
Abstract
This white paper examines the critical role of cryptographic telemetry in implementing Zero Trust Architecture (ZTA) and defending against quantum computing threats in light of recent developments in the industry. We look at the intersection of NIST ZTA guidelines, from a Quantum Computing risk and data security perspective against requirements for financial institutions from NIST 800-53 Rev. 5, FedRAMP High SAF, EU DORA, and the EU AI Act to provide a comprehensive framework for financial institutions and other critical infrastructure sectors. The paper argues that robust cryptographic telemetry is essential for maintaining security, compliance, and operational efficiency in an increasingly complex and heterogeneous threat landscape.
Introduction
As quantum computing advances threaten to undermine current cryptographic standards, financial institutions globally face an urgent need to adapt and strengthen their security postures. Zero Trust Architecture, as outlined by NIST SP 800-207, provides a framework for this adaptation, emphasizing continuous verification and least-privilege access. However, the effective implementation of ZTA relies heavily on high-quality, real-time telemetry data, particularly in the realm of cryptographic operations and threat analysis. This paper explores how cryptographic telemetry serves as a linchpin in ZTA implementation, quantum threat mitigation, and regulatory compliance across multiple standards.