Conference Agenda 2025
Racing Against the Global Quantum Deadline, a Call to Action
Presented April 7, the day before ICMC. This optional special-focus event will help you prepare now for the threat posed by future quantum computers. The agenda includes important, actionable information for anyone concerned with cybersecurity in a data-dependent enterprise.
Click Here for the PQ Cyber Day Agenda
Tuesday April 8
Conference Sessions
08:00 - 09:00 Registration
Foyer
09:00 - 10:10 Plenary Keynote Session
Grand Ballroom
Moderator: Erin Connor, Consultant, Program Director, ICMC
09:00 Welcome Address and CMUF Update (P10a) Yi Mao, CEO and Managing Director, atsec information security corp, United States
09:10 Government Keynote: CSE View on PQC Transition (P10b) Melanie Anderson, Director General, Information Assurance / Directrice générale, Assurance de l’information, Canadian Centre for Cyber Security (CCCS), Canada
09:40 Industry Keynote: Timeline for PQC Adoption (P10c) Matthew Campagna, Chairman of ETSI Quantum-safe Cryptography Technical Committee, Sr Principal Engineer, Amazon Web Services (AWS), United States
10:10-11:00 Networking Break in Exhibits
Foyer
11:00-12:00 Plenary Session
Grand Ballroom
Moderator: Yi Mao, CEO and Managing Director, atsec information security corp, United States
11:00 CMVP Program Update (P11a) Alex Ca|is, CMVP Deputy Program Manager (US), National Institute of Standards and Technology (NIST), United States; Kailai Chen, CMVP Program Manager (Canada), Canadian Centre for CyberSecurity (CCCS) CMVP, Canada; David Hawes, CMVP Program Manager, National Institute of Standards and Technology (NIST), United States [60MIN]
12:00-13:00 Lunch in Exhibit Area
Foyer
13:00-15:00 Track Sessions
Salon CD
PQ Technology (Q12)
Updates, Verification & Validation
Moderator: Roberta Faux, Head of Cryptography and Field CTO, Arqit, United States
13:00 Titbits: Latest Updates on PQC Deployments (Q12a) Nils Gerhardt, CTO, Utimaco, Germany
13:30 PQSecure Formality: Formal Verification and Assurance in Hardware for Post-Quantum Cryptography (Q12b) Reza Azarderakhsh, Professor and CEO, PQSecure and Florida Atlantic University, United States
14:00 Overview of Validating Falcon (FIPS 206 FN-DSA) (Q12c) Pierre Ciadoux, NIST Foreign Guest Researcher, National Institute of Standards and Technology (NIST), United States
14:30 The Big Picture of Lattice Signature Thresholdization (Q12d) Thomas Espitau, Lead Crpytographic Researcher, PQShield, France
Salon AB
Certification (C12)
Standards & Policy
Moderator: Fiona Stewart, Security Assurance Consultant, Assurgo, United States
13:00 Mind the Gap: Navigating the Gray Areas of 19790:2025 (C12a) Carolyn French, Manager – Product Assurance and Standards, Canadian Centre for CyberSecurity (CCCS), Canada
13:30 The Technical Guideline BSI-TR 02102 (Cryptographic Mechanisms: Recommendations and Key Lengths) and Its Impact (C12b) Werner Schindler, Section Head, Bundesamt für Sicherheit in der Informationstechnik (BSI), Germany
14:00 NIAP Policy 5 Updates (C12c) Edward Morris, CST Lab Manager, Gossamer Security Solutions, United States
14:30 Cloud Management and Security Standard for Financial Services (C12d) Smita Mahapatra, Senior Security Industry Specialist, AWS, United States
Crush Space
Crypto Tech (G12)
Formalities
Moderator: Brian Wood, Program Manager, Google, United States
13:00 Formal Methods within Certification Programs: Status Update (G12a) Nicky Mouha, Researcher, FedWriters, United States
13:30 Ensuring Correctness and Security in High-Speed Post-Quantum Cryptography: Leveraging Formal Verification Tools (G12b) Pierre-Yves Strub, Lead Formal Verification Researcher, PQShield, France
14:00 Public ledger integration with HSMs (G12c) Noah Bouma, Technical Product Manager, Crypto4A Technologies, Canada
14:30 Secure HSM Auditing at a Distance: Enabling Remote Oversight (G12d) Jean-Pierre Fiset, Principal System Architect, Crypto4A , Canada
15:00-15:30 Networking Break in Exhibits
Foyer
15:30-17:00 Track Sessions
PQ Technology (Q13)
PQ & Financial Services
Moderator: Ryan Perry, Account Executive, TIC, UL Solutions, Netherlands
15:30 Panel Discussion: X9 Standard Quantum TLS (Q13a) Leader: Philip Lafrance, Standards Manager, ISARA Corporation, Canada; Panelists: Anthony Hu, Senior Software Developer, wolfSSL, Canada; David Hook, VP Software Engineering, Keyfactor/Legion of the Bouncy Castle, Australia [60MIN]
16:30 Payment Processing in the Post-Quantum World (Q13c) Manish Upasani, Head of Products, Utimaco, United States
Certification (C13)
ACMVP
Moderator: Marcos Portnoi, Lab Director, atsec information security corp., United States
15:30 ACMVP Project Update Panel (C13a) Leader: Courtney Maatta, Senior Customer Solutions Manager, AWS, United States; Panelists: Christopher Celi, Computer Scientist, National Institute of Standards and Technology (NIST), United States; Stephan Mueller, Principal Consultant, atsec information security, United States; Raoul Gabiam, Principal Cloud and Cybersecurity Engineer, MITRE, United States; Barry Fussell, Principal Engineer, Cisco Systems, United States; Yi Mao, CEO and Managing Director, atsec information security corp, United States [60MIN]
16:30 Integration of the ACVMP Within the CMVP (C13c) Christopher Celi, Computer Scientist, National Institute of Standards and Technology (NIST), United States; David Hawes, CMVP Program Manager, National Institute of Standards and Technology (NIST), United States
Crypto Tech (G13)
Automation & Priorities
Moderator: Joshua Brickman, Senior Director, Security Evaluations, Oracle, United States
15:30 ACVTS for Global Adoption: Setting Up a Scheme-Specific ACVP Server (G13a) Joachim Vandersmissen, IT Security Consultant, atsec information security corp., United States
16:00 NIST Special Publication 800-140BR1 Security Policy Format (G13b) Chris Brych, Senior Principal Security Analyst, Oracle, Canada; Greg Burlea, IT Security Consultant, atsec information security corp., United States
16:30 A Contrarian’s View of Priorities in the PQC Transition (G13c) Bruno Couillard, CEO & Co-founder, Crypto4A Technologies, Canada
17:00-18:30 Welcome Reception in Exhibits
FIPS 140 Certificate Presentation Ceremony (P14a)
Located in the Crush Space. A free event for conference registrants. During the ICMC opening reception, FIPS-certified product developers will have the opportunity to receive a commemorative certificate from NIST and receive of photograph of the presentation. Click here for complete information.
Wednesday April 9
Conference Sessions
08:00 - 09:00 Coffee in the Exhibits
Foyer
09:00 - 10:30 Track Sessions
Salon CD
PQ Technology (Q20)
Standardization, Mitigation & Integration
Moderator: Tomas Mraz, Software Developer, OpenSSL Foundation, Czechia
09:00 The Use of Standardized Cryptography to Protect From the Quantum Threat (Q20a) Jonathan Hammell, Senior Technical Advisor, Cryptographic Security, Canadian Centre for Cyber Security, Canada
09:30 Migrating Secure Channel Protocols to Post-Quantum Standards: A Case Study on eSIMs (Q20b) Emmanuelle Dottax, Cryptography and Security Architect, IDEMIA ST, France
10:00 Integrating Open-Source FIPS-Validated PQ Cryptography (Q20c) Will Childs-Klein, Senior Software Developer, AWS Cryptography, Amazon Web Services, United States
Salon AB
Certification (C20)
CMVP & Automation
Moderator: Nithya Rachamadugu, VP Cybersecurity Certification, DEKRA, United States
09:00 Tamper evident labels or expensive shiny stickers? How can tamper evident labels and testing be improved to better detect physical attacks. (C20a) Claude Randall, Senior Security Engineer, Teron Labs, Australia
09:30 Cloud Infrastructure: Enabling the CMVP Automation Project (C20b) Douglas Boldt, US Federal SA, Amazon Web Services, United States; Raoul Gabiam, Principal Cloud and Cybersecurity Engineer, MITRE, United States; Murugiah Souppaya, Computer Scientist, National Institute of Standards and Technology (NIST), United States
10:00 Automating the CMVP: The Present and Future of SP 800-140B Revision 1 and Webcryptik (C20c) James Dean, Deputy Lab Manager, UL Solutions, United States
Crush Space
Crypto Tech (G20)
Selected Topics
Moderator: Dr. Seth Nielson, Founder and Chief Scientist, Crimson Vista, United States
09:00 Real or Fake? Content Provenance Tech to Fight Online Disinformation (G20a) Christian Paquin, Principal Research Software Engineer, Microsoft, United States
09:30 Demystifying Pursuit as a 1st Party Lab (G20b) Shawn Geddis, Co-Founder and Chief Technology Officer, Katalyst LLC, United States
10:00 From Crypto-Agility to Key-Management Agility to API Agility: The Concept of Agility in Everything, Everywhere, All at Once (G20c) John O’Connor, Vice President of Product Management, Crypto4A Technologies, Canada
10:30 - 11:00 Networking Break in Exhibits
Foyer
11:00 - 12:30 Track Sessions
PQ Technology (Q21)
Putting it into Practice
Moderator: Dr. Seth Nielson, Founder and Chief Scientist, Crimson Vista, United States
11:00 Real-World Experience with PQC Migration (Q21a) Olivier Couillard, Technical Product Manager, Crypto4A Technologies, Canada
11:30 Lessons Learned While Deploying FIPS-Validated PQC at AWS (Q21b) Dr. Jake Massimo, Applied Scientist, AWS Post Quantum Cryptography, United States
12:00 Implementing Production-Grade ML-KEM (Q21c) Alexander Zaslavsky, Lead SW Eng, SafeLogic, Spain
Certification (C21)
Selected Topics
Moderator: Yi Mao, CEO and Managing Director, atsec information security corp, United States
11:00 Unlocking Cyber Resilience with SBOMs/CBOMs – Understanding their strategic value and preparing for PQC (C21a) Loren Shade, Vice President of Marketing, Allegro Software, United States
11:30 Entropy Validation Certificate Public Use Document Template Updates (C21b) Kirill Sinitski, Common Criteria Certifier and ESV reviewer, Canadian Centre for CyberSecurity (CCCS) and ESV, Canada
12:00 Fast-Tracking Software Validations (C21c) Simo Sorce, Distinguished Engineer, Red Hat, United States; Alessandro Fazio, atsec information security corporation, Italy
PQ Preparedness (R21)
Integration & Readiness
Moderator: Brian Wood, Program Manager, Google, United States
11:00 PQC for Payments: What’s in Store for 2025 and Beyond (R21a) Adam Cason, VP, Global and Strategic Alliances, Futurex, United States
11:30 Panel Discussion: Quantum Readiness Now (R21b) Leader: Michele Mosca, CEO, evolutionQ, Canada; Panelists: Stephan Ehlen, BSI, Germany; Kenneth Giuliani, Canadian Imperial Bank of Commerce (CIBC), Canada; Jaime Gomez, Santander, Spain; Dr. Hubert Le Van Gong, Managing Director and a Distinguished Engineer in Global Cybersecurity, JPMorgan Chase, United States; Melanie Anderson, Director General, Information Assurance / Directrice générale, Assurance de l’information, Canadian Centre for Cyber Security (CCCS), Canada [60MIN]
12:30 - 13:30 Lunch in Exhibit Area
Foyer
13:30 - 15:00 Track Sessions
PQ Technology (Q22)
Devil in the Details
Moderator: Simo Sorce, Distinguished Engineer, Red Hat, United States
13:30 Witch Hunt! Demystifying the Black Magic of Parameter Selection for Lattices (Q22a) Thomas Espitau, Lead Cryptographic Researcher, PQShield, France
14:00 PQC and Key Blocks in Payment Security Standards (Q22b) Richard Kisley, Chief Engineer, IBM, United States
14:30 Expanding on Crypto Agility (Q22c) Johannes Lintzen, Business Development Director Global, PQShield, United Kingdom; Roy Stephan, Sr Solutions Architect, Quantinuum, United States
RBGs (N22)
Updates & Use
Moderator: Duncan Jones, Head of Cybersecurity, Quantinuum, United Kingdom
Track Sponsor
13:30 Update on 90A Revision (N22a) John Kelsey, Computer Scientist, National Institute of Standards and Technology (NIST) and COSIC/KU Leuven, United States
14:00 Using Pre-Loaded Entropy as UDS for TCG DICE PQC Key Generation (N22b) Thomas Bowen, Storage Security Architect, Intel, United States
14:30 PQC in OpenSSL (N22c) Tomas Vavra, Engineering Manager, OpenSSL Corporation, United States
PQ Preparedness (R22)
Hybrids & Discovery
Moderator: Nithya Rachamadugu, VP Cybersecurity Certification, DEKRA, United States
Track Sponsor
13:30 Using Hybrids to Be FIPS 140-3 and CNSA 2.0 Compliant (R22a) Anthony Hu, Senior Software Developer, wolfSSL, Canada
14:00 To Hybrid or Not to Hybrid… (R22b) John Gray, Senior Principal Applications Developer, Entrust, Canada
14:30 PQC and FIPS 140-3 Requirements (R22c) Apurva Varalikar, Lab Manager, Intertek, Acumen Security, India
15:00-15:30 Networking Break in Exhibits
Foyer
15:30 - 17:00 Track Sessions
PQ Technology (Q23)
Side Channels & Signatures
Moderator: Tomas Mraz, Software Developer, OpenSSL Foundation, Czechia
15:30 Are Hybrid Signature and KEM Schemes FIPS-Compliant? (Q23a) Mike Ounsworth, Software Security Architect, Entrust, Canada
16:00 Enabling Pre-Silicon Side-Channel Testing of PQC Ciphers (Q23b) Panasayya Yalla, Principal Security Analyst, Keysight Riscure Security Solutions, United States
16:30 Post-Quantum Algorithms: Side-Channel Analysis (Q23c) Stephan Mueller, Principal Consultant, atsec information security corp., United States
RBGs (N23)
Sources & Seeds
Moderator: Juan Gonzalez, Laboratory Director, Teron Labs, Australia
15:30 Information-Theoretic Conditioning/Post-Processing in SP 800-90B and AIS 20/31 (N23a) John Kelsey, Computer Scientist, National Institute of Standards and Technology (NIST) and COSIC/KU Leuven, United States; Werner Schindler, Section Head, Bundesamt für Sicherheit in der Informationstechnik (BSI), Germany
16:00 Certifying Quantum-Enhanced Entropy Sources: Navigating SP 800-90B With Novel Technology (N23b) Kevin Milner, Lead Cryptographic Engineer, Quantinuum, United States; Marcos Portnoi, Lab Director, atsec information security corp., United States
16:30 Randomness Extractors and Quantum-Enhanced Seeds for Cybersecurity (N23c) Kevin Milner, Lead Cryptographic Engineer, Quantinuum, United States
PQ Preparedness (R23)
Finance & Telecom
Moderator: Joshua Brickman, Senior Director, Security Evaluations, Oracle, United States
15:30 Panel Discussion: Quantum Security for Financial Services (R23a) Leader: Michele Mosca, CEO, evolutionQ, Canada; Panelists: Blair Canavan, Director Alliances, Thales, Canada; Duncan Jones, Head of Cybersecurity, Quantinuum, United Kingdom [60MIN]
16:30 Migrating Telecom to Quantum-Resistant Cryptography on a Global Scale (R23c) John Mattsson, Expert, Cryptographic Algorithms and Security Protocols, Ericsson, Sweden
18:30-21:00 Dine-Out Toronto
Separate registration required. Enjoy an informal group dinner and drinks at one one Toronto’s finest restaurants with your ICMC colleagues. Reserve your seat for a prix-fixe dinner at a group table. Reserve early—seating is limited. On site, you’ll meet your group at 18:30 at the ICMC registration desk in the foyer and depart from there. Thanks to the generous support of Dine Out Sponsor Intertek Acumen Security
Thursday April 10
Conference Sessions
08:00 - 09:00 Coffee
Foyer
09:00 - 10:30 Track Sessions
Salon CD
PQ Technology (Q30)
PQ Construction
Moderator: Simo Sorce, Distinguished Engineer, Red Hat, United States
09:00 Navigating the Future: Building PQ-Safe Cryptographic Modules (Q30a) Graham Costa, Security and Certifications Manager, Thales, United Kingdom
09:30 Panel Discussion: Tales From the Front Lines of the First Wave of Quantum-Safe Manufacturing (Q30b) Leader: Jim Goodman, CTO, Crypto4A Technologies, Canada; Panelists: Jim Last, AMD, United States; Jason Soroko, Senior Fellow, Sectigo, Canada; Jeff Andersen, Senior Staff Software Engineer, Google, United States; Tommy Charles, HP Chief Cryptographer, HP Security Lab, United Kingdom; David Wheeler, Principal Engioneer, Amazon, Specialized Business Security, United States [60MIN]
Salon AB
Implementations (U30)
Selected Topics
Moderator: Nithya Rachamadugu, VP Cybersecurity Certification, DEKRA, United States
09:00 OpenSSL Roadmap (U30a) Tim Hudson, President of OpenSSL Corporation, Australia
09:30 Black-Box Side-Channel Leakage Verification Using a Statistical Approach (U30b) Alicja Kario, Principal Quality Engineer, Red Hat, Czechia
10:00 Post-Quantum Cryptography Auditing (U30c) Javed Samuel, Vice President, NCC Group Cryptography Services, United States
Crush Space
Embedded/IoT (E30)
Embedded & IoT Topics
Moderator: Dr. Seth Nielson, Founder and Chief Scientist, Crimson Vista, United States
09:00 Implementing Post-Quantum Cryptography in Hardware-Accelerated Roots of Trust (E30a) Jeff Andersen, Senior Staff Software Engineer, Google, United States; Mojtaba Bisheh-Niasar, Senior Security Engineer, Microsoft, United States
09:30 Practical Framework for Transitioning to PQC: Balancing Security and Hardware Constraints (E30b) Xin Qiu, Sr. Director, PKI Center and Security Solutions, United States
10:00 IoT in the Quantum Crosshairs: A FIPS-Guided Defense Strategy (E30c) Loren Shade, Vice President of Marketing, Allegro Software, United States
10:30 - 10:45 Networking Break
Foyer
10:45 - 12:15 Track Sessions
PQ Technology (Q31)
Introductions & Transitions
Moderator: Roberta Faux, Head of Cryptography and Field CTO, Arqit, United States
10:45 Introducing PQC to the Cybersecurity Ecosystem: Challenges, Impacts, and Strategies (Q31a) Lily Chen, Mathematician, NIST Fellow, National Institute of Standards and Technology (NIST), United States
11:15 Integrating Quantum-Resistant Cryptography into AI-Driven Systems (Q31b) Garv Chawla, Senior Security Engineer, F5 Networks, India
11:45 PQC From Prototype to Stability: Supporting the Next Phase of the Quantum-Safe Transition (Q31c) Pravek Sharma, Cryptographic Research Architect, University of Waterloo, Canada; Spencer Wilson, Cryptography Research Architect, University of Waterloo, Canada
Implementations (U31)
Selected Topics
Moderator: Dr. Seth Nielson, Founder and Chief Scientist, Crimson Vista, United States
10:45 Security vs. Compliance, Security Over Compliance, or Security and Compliance? (U31a) Maureen Barry, Senior Principal Security Analyst, Oracle, Canada; Jennifer Brady, Senior Principal Security Analyst, Oracle, United States
11:15 I’ve been asked to develop a quantum-safe HSM, now what? (U31b) Jim Goodman, CTO, Crypto4A Technologies, Canada
11:45 Beyond the Certificate: Pursuing Full FIPS Compliance in Cryptographic Products (U31c) Rumman Mahmud, R&D Engineer Software 6, Broadcom, United States; Joachim Vandersmissen, IT Security Consultant, atsec information security corp., United States
OS Crypto (S31)
Open Source Topics
Moderator: Juan Gonzalez, Laboratory Director, Teron Labs, Australia
10:45 Go and FIPS 140-3: Validating a Memory-Safe Module (S31a) Daniel McCarney, Software/Cryptography Developer, Go FIPS Validation, Canada
11:15 KMIP: Proof That Industry Interoperability Testing Delivers (S31b) Tony Cox, Consultant, TC Logic, Australia
11:45 Applying KEMs Using the Bouncy Castle APIs (S31c) David Hook, VP Software Engineering, Keyfactor/Legion of the Bouncy Castle, Australia
12:15-12:30 Networking Break
Foyer
12:30-13:30 Closing Plenary Session
Salon CD
Put your CMUF knowledge to the test in our interactive trivia challenge!
Compete with fellow attendees in a fun, fast-paced game for a chance to win great prizes and ultimate bragging rights. Join us for the Cryptographic Module User Forum (CMUF) Plenary, a dynamic and interactive session that brings the community together to celebrate progress and chart the path forward. We’ll kick things off with a look back at the CMUF’s biggest accomplishments over the past decade—key milestones, collaborative wins, and advancements that have helped shape the cryptographic module landscape. Whether you’re a longtime contributor or new to the forum, this plenary is your chance to connect, reflect, and contribute to the future of cryptographic module development.
12:30 Plenary – FIPS Fun with the CMUF: Honoring History, Inspiring Tomorrow (P32a) Your Hosts: Fiona Stewart, Security Assurance Consultant, Assurgo, United States; Trish Wolff, Leader FIPS Certifications, Cisco Systems, United States; Renaudt Nunez, Senior IT Security Consultant, atsec information security corp, United States [60MIN]