Hancom WITH, a Hancom Group affiliate specializing in security, authentication, and digital finance, is introducing a no-installation security solution that protects web communication data from quantum computer hacking threats without installing a security program.
Hancom WITH said on the 30th that it launched Hancom xFWeb, a next-generation, no-installation security solution.
Hancom xFWeb is a solution designed to be applied to the web application layer while minimizing changes to customer systems. It can be used without installing a separate EXE-based security program, enhancing both security and convenience.
In particular, it applies a design based on crypto-agility, cited as a key element of future security. This reduces the burden of system malfunctions due to complexity and aging of existing systems and the replacement expense, and supports a safe and efficient transition to a post-quantum cryptography (PQC) framework while minimizing system changes.
Hancom xFWeb also adopts a layered PQC hybrid approach. By adding PQC cryptographic communication at the application layer on top of the existing TLS security channel, it can proactively respond to quantum computer threats without replacing the overall infrastructure, the company said.
In connection with the recent leak of connected information (CI) values, relevant agencies examined the possibility of hacking through parameter tampering and requested inspections of business systems that use CI values. Parameter tampering attacks are cited as one of the main causes of hacking incidents in domestic web systems.
Hancom xFWeb provides a range of security features to counter such web system attacks. In particular, through authenticated encryption with associated data (AEAD)-based data integrity verification, it prevents not only parameter and web tampering vulnerabilities that may occur during transmission, but also scraping and bot attacks. In addition, by applying script obfuscation and integrity self-verification technologies, it responds to code analysis and tampering attempts.
Hancom WITH plans to expand the supply of Hancom xFWeb, focusing on the public and financial sectors that must ensure both regulatory compliance and security, in line with the government's phased restrictions on installable security software and the demand for cryptographic system transitions.
Song Sang-yeop, CEO of Hancom WITH, said, "No-installation security environments and Quantum-resistant Encryption transitions are emerging as key security tasks in the public and financial markets," adding, "Hancom WITH will proactively respond to changing security policies and market trends with customized solutions that can secure crypto-agility."