Latest Quantum Security, PQC, Post-Quantum, Crypto-Agility News
-
Jun- 2025 -25 JuneQuantum Policy, Standards & Regulation News
The U.S. GAO Publishes a Quantum Threat Report – Right on Strategy but Wrong on Timing
The U.S. Government Accountability Office (GAO) has issued a June 2025 report titled “Quantum Computing: Leadership Needed to Coordinate Cyber Threat Mitigation Strategy” (GAO-25-108590). GAO makes many spot-on recommendations – calling for strong federal leadership, workforce development, investment in post-quantum readiness, and securing the quantum tech supply chain – and I wholeheartedly agree with these points. However, I strongly disagree…
Read More » -
24 JuneQuantum Policy, Standards & Regulation News
EU Commission Roadmap Targets 2030 for Post-Quantum Cryptography Transition
On June 23, 2025, the European Commission and EU Member States unveiled a coordinated roadmap to transition Europe’s digital infrastructure to post-quantum cryptography (PQC). This plan lays out a clear timeline for moving to quantum-resistant encryption, recognizing the urgent threat that future quantum computers pose to classical cryptography. PQC is seen as a key measure to deflect advanced cyber threats…
Read More » -
15 JuneQuantum Security & PQC News
“Tour de Gross” Bets That High‑Rate QLDPC Modules Can Beat the Surface Code on Qubit Economics – If Inter‑Module Measurements and Links Can Catch Up.
The June 2025 preprint “Tour de gross” proposes the bicycle architecture: a modular, long‑range‑connected fault‑tolerant quantum computing stack built around bivariate bicycle (BB) quantum LDPC codes and an explicit set of fault‑tolerant logical “bicycle instructions” (logical measurements, automorphisms, and T‑state injection). The paper’s central claim is architectural: for a fixed number of physical qubits and a fixed physical error rate,…
Read More » -
May- 2025 -28 MayResearch News
Quantum Breakthrough Slashes Qubit Needs for RSA-2048 Factoring
A new research preprint by Google Quantum AI scientist Craig Gidney has dramatically lowered the estimated resources needed to break RSA-2048 encryption using a quantum computer. Gidney’s May 2025 paper, “How to factor 2048 bit RSA integers with less than a million noisy qubits,” argues that a fault-tolerant quantum computer with under 1 million qubits could factor a 2048-bit RSA…
Read More » -
Apr- 2025 -13 AprilQuantum Security & PQC News
SC081v3 and the 47‑Day Certificate Era: What the CA/B Forum Just Set in Motion
On April 11, 2025, the CA/Browser Forum published Ballot SC081v3, “Introduce Schedule of Reducing Validity and Data Reuse Periods,” alongside a draft of the TLS Baseline Requirements updated for IPR review. The ballot sets a phased schedule that shrinks maximum publicly trusted TLS server certificate validity from 398 days to 200 days (March 15, 2026), then 100 days (March 15, 2027), and ultimately 47 days…
Read More » -
Mar- 2025 -25 MarchQuantum Policy, Standards & Regulation News
ETSI publishes TS 103 744 v1.2.1: Hybrid key establishment for the quantum transition
ETSI’s Technical Committee CYBER has released ETSI TS 103 744 V1.2.1, a technical specification for quantum‑safe hybrid key establishment—methods that combine classical elliptic‑curve Diffie‑Hellman (ECDH) with post‑quantum key encapsulation (ML‑KEM) to derive shared keys that remain secure even if one component is later broken. The new version codifies two combiner constructions, enumerates fixed parameter sets, and ships with test vectors…
Read More » -
24 MarchQuantum Policy, Standards & Regulation News
UK NCSC Releases “Timelines for migration to post-quantum cryptography”
London, UK (NCSC) - The UK’s National Cyber Security Centre (NCSC) this week unveiled new guidance on timelines for migrating to post-quantum cryptography (PQC), outlining a phased roadmap for organizations to shift their encryption methods to quantum-resistant standards by 2035. Announced just days ago, the guidance breaks down key milestones over the next decade to ensure a “smooth and controlled…
Read More » -
20 MarchResearch News
New Study Shows Post‑Quantum Cryptography (PQC) Doesn’t Have to Sacrifice Performance
The new performance analysis of Kyber and Dilithium is a welcome addition to the PQC literature. It confirms that post‑quantum security and good performance are not mutually exclusive, especially when using optimized implementations. In fact, Kyber and Dilithium often outperform classical cryptography at comparable security levels. This challenges the narrative that PQC will drastically slow down our networks. At the…
Read More » -
11 MarchQuantum Policy, Standards & Regulation News
NIST Picks HQC as New Post-Quantum Encryption Candidate
The U.S. National Institute of Standards and Technology (NIST) has announced today the selection of Hamming Quasi-Cyclic (HQC) as a new post-quantum encryption candidate in its Round 4 of the Post-Quantum Cryptography (PQC) standardization program. HQC’s advancement is especially interesting because it is the only algorithm from NIST’s 4th round of evaluations to be chosen for standardization. This move will…
Read More » -
Jan- 2025 -19 JanuaryQuantum Policy, Standards & Regulation News
Executive Order 14144: Biden’s Big Swing at Cybersecurity Modernization
On January 16 2025 President Joe Biden signed Executive Order 14144, “Strengthening and Promoting Innovation in the Nation’s Cybersecurity.” The 17‑page directive is the administration’s most comprehensive cyber policy since EO 14028 in 2021 and, for the first time, embeds post‑quantum cryptography (PQC) migration deadlines directly in federal law. At its core the order: Puts PQC on a clock. CISA must publish, within 180 days, a list…
Read More » -
9 JanuaryQuantum Policy, Standards & Regulation News
NIST Releases NIST SP 800-227 IPD
NIST has just released the initial public draft of CSWP 48, part of its Migration to Post-Quantum Cryptography project: "Mappings of Migration to PQC Project Capabilities to NIST Cybersecurity Framework 2.0 and to Security and Privacy Controls for Information Systems and Organizations."
Read More » -
7 JanuaryResearch News
First Successful Factorization of RSA-2048 by Quantum Computer? Not Even Close!
Chinese researchers published “A First Successful Factorization of RSA-2048 Integer by D-Wave Quantum Computer.” To get straight to the point - the title is misleading. The authors did NOT factor a general RSA-2048 key (as used in real cryptography); instead, they factored a specially structured 2048-bit semiprime chosen to be extremely easy.
Read More » -
Nov- 2024 -14 NovemberQuantum Security & PQC News
NIST IR 8547: A Roadmap for Transitioning to Post‑Quantum Cryptography
In November 2024, the U.S. National Institute of Standards and Technology (NIST) released NIST Internal Report 8547 (Initial Public Draft), titled “Transition to Post-Quantum Cryptography Standards.” This document serves as a strategic roadmap for phasing out today’s quantum-vulnerable cryptography (like RSA and ECC) and migrating to post-quantum cryptographic (PQC) standards. The draft lays out timelines, new standards, and guidance to…
Read More » -
6 NovemberIndustry & Ecosystem News
Banque de France & MAS Complete Landmark Post-Quantum Email Security Experiment
The Banque de France (BDF) and the Monetary Authority of Singapore (MAS) have successfully completed a groundbreaking cross-border experiment in post-quantum cryptography (PQC), carried out between Paris and Singapore using ordinary internet infrastructure. This joint trial marks an important milestone in fortifying digital communications against future quantum-enabled cyber threats. By demonstrating quantum-resistant encryption and digital signatures on real-world email systems,…
Read More » -
Oct- 2024 -28 OctoberQuantum Policy, Standards & Regulation News
CISA’s Post-Quantum OT Guidance: Key Takeaways and Next Steps for CISOs
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a landmark report titled ”Post-Quantum Considerations for Operational Technology.” This publication marks the first dedicated federal guidance on how quantum computing threats specifically impact industrial control systems (ICS) and other operational technology (OT) environments. The report comes with a clear warning: OT systems could lag behind IT in achieving quantum-resistant security,…
Read More »
