TY - GEN
T1 - Post-Quantum Security Enhancements for the TRISA Framework: A Technical Perspective
AU - Shevchuk, Ruslan
AU - Adamyk, Bogdan
AU - Benson, Vladlena
N1 - Copyright © 2025 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
PY - 2025/10/9
Y1 - 2025/10/9
N2 - This paper presents a comprehensive technical analysis of the Travel Rule Information Sharing Architecture (TRISA), a compliance framework designed to facilitate secure and privacy-preserving exchange of identity information between Virtual Asset Service Providers (VASPs) in accordance with the Financial Action Task Force (FATF) Travel Rule. We highlight the emerging threat posed by quantum computing to TRISA's current cryptographic mechanisms, including RSA and ECDSA, which underpin identity verification, secure communication, and data confidentiality. To address these vulnerabilities, we propose a migration path integrating post-quantum cryptographic primitives standardized by NIST, specifically CRYSTALS-Kyber for key encapsulation and CRYSTALS-Dilithium for digital signatures. Our approach ensures the preservation of confidentiality, integrity, authenticity, and non-repudiation in the quantum era, enabling TRISA to maintain regulatory compliance and trustworthiness. This work fills a critical gap in adapting specialized compliance architectures to the post-quantum landscape, providing practical recommendations for upgrading TRISA's cryptographic infrastructure to withstand quantum attacks.
AB - This paper presents a comprehensive technical analysis of the Travel Rule Information Sharing Architecture (TRISA), a compliance framework designed to facilitate secure and privacy-preserving exchange of identity information between Virtual Asset Service Providers (VASPs) in accordance with the Financial Action Task Force (FATF) Travel Rule. We highlight the emerging threat posed by quantum computing to TRISA's current cryptographic mechanisms, including RSA and ECDSA, which underpin identity verification, secure communication, and data confidentiality. To address these vulnerabilities, we propose a migration path integrating post-quantum cryptographic primitives standardized by NIST, specifically CRYSTALS-Kyber for key encapsulation and CRYSTALS-Dilithium for digital signatures. Our approach ensures the preservation of confidentiality, integrity, authenticity, and non-repudiation in the quantum era, enabling TRISA to maintain regulatory compliance and trustworthiness. This work fills a critical gap in adapting specialized compliance architectures to the post-quantum landscape, providing practical recommendations for upgrading TRISA's cryptographic infrastructure to withstand quantum attacks.
KW - anti-money laundering
KW - FATF Travel Rule
KW - migration strategy
KW - post-quantum cryptography
KW - quantum computing
KW - regulatory technology
KW - RISA
KW - VASP
UR - http://www.scopus.com/inward/record.url?scp=105019965480&partnerID=8YFLogxK
UR - https://ieeexplore.ieee.org/document/11185711
U2 - 10.1109/ACIT65614.2025.11185711
DO - 10.1109/ACIT65614.2025.11185711
M3 - Conference publication
AN - SCOPUS:105019965480
T3 - Proceedings - International Conference on Advanced Computer Information Technologies, ACIT
SP - 553
EP - 558
BT - 2025 15th International Conference on Advanced Computer Information Technologies (ACIT)
PB - IEEE
T2 - 15th International Conference on Advanced Computer Information Technologies, ACIT 2025
Y2 - 17 September 2025 through 19 September 2025
ER -