Latest Quantum Security, PQC, Post-Quantum, Crypto-Agility News
-
Apr- 2025 -13 AprilQuantum Security & PQC News
SC081v3 and the 47‑Day Certificate Era: What the CA/B Forum Just Set in Motion
On April 11, 2025, the CA/Browser Forum published Ballot SC081v3, “Introduce Schedule of Reducing Validity and Data Reuse Periods,” alongside a draft of the TLS Baseline Requirements updated for IPR review. The ballot sets a phased schedule that shrinks maximum publicly trusted TLS server certificate validity from 398 days to 200 days (March 15, 2026), then 100 days (March 15, 2027), and ultimately 47 days…
Read More » -
Mar- 2025 -25 MarchQuantum Policy, Standards & Regulation News
ETSI publishes TS 103 744 v1.2.1: Hybrid key establishment for the quantum transition
ETSI’s Technical Committee CYBER has released ETSI TS 103 744 V1.2.1, a technical specification for quantum‑safe hybrid key establishment—methods that combine classical elliptic‑curve Diffie‑Hellman (ECDH) with post‑quantum key encapsulation (ML‑KEM) to derive shared keys that remain secure even if one component is later broken. The new version codifies two combiner constructions, enumerates fixed parameter sets, and ships with test vectors…
Read More » -
24 MarchQuantum Policy, Standards & Regulation News
UK NCSC Releases “Timelines for migration to post-quantum cryptography”
London, UK (NCSC) - The UK’s National Cyber Security Centre (NCSC) this week unveiled new guidance on timelines for migrating to post-quantum cryptography (PQC), outlining a phased roadmap for organizations to shift their encryption methods to quantum-resistant standards by 2035. Announced just days ago, the guidance breaks down key milestones over the next decade to ensure a “smooth and controlled…
Read More » -
20 MarchResearch News
New Study Shows Post‑Quantum Cryptography (PQC) Doesn’t Have to Sacrifice Performance
The new performance analysis of Kyber and Dilithium is a welcome addition to the PQC literature. It confirms that post‑quantum security and good performance are not mutually exclusive, especially when using optimized implementations. In fact, Kyber and Dilithium often outperform classical cryptography at comparable security levels. This challenges the narrative that PQC will drastically slow down our networks. At the…
Read More » -
11 MarchQuantum Policy, Standards & Regulation News
NIST Picks HQC as New Post-Quantum Encryption Candidate
The U.S. National Institute of Standards and Technology (NIST) has announced today the selection of Hamming Quasi-Cyclic (HQC) as a new post-quantum encryption candidate in its Round 4 of the Post-Quantum Cryptography (PQC) standardization program. HQC’s advancement is especially interesting because it is the only algorithm from NIST’s 4th round of evaluations to be chosen for standardization. This move will…
Read More » -
Jan- 2025 -19 JanuaryQuantum Policy, Standards & Regulation News
Executive Order 14144: Biden’s Big Swing at Cybersecurity Modernization
On January 16 2025 President Joe Biden signed Executive Order 14144, “Strengthening and Promoting Innovation in the Nation’s Cybersecurity.” The 17‑page directive is the administration’s most comprehensive cyber policy since EO 14028 in 2021 and, for the first time, embeds post‑quantum cryptography (PQC) migration deadlines directly in federal law. At its core the order: Puts PQC on a clock. CISA must publish, within 180 days, a list…
Read More » -
9 JanuaryQuantum Policy, Standards & Regulation News
NIST Releases NIST SP 800-227 IPD
NIST has just released the initial public draft of CSWP 48, part of its Migration to Post-Quantum Cryptography project: "Mappings of Migration to PQC Project Capabilities to NIST Cybersecurity Framework 2.0 and to Security and Privacy Controls for Information Systems and Organizations."
Read More » -
7 JanuaryResearch News
First Successful Factorization of RSA-2048 by Quantum Computer? Not Even Close!
Chinese researchers published “A First Successful Factorization of RSA-2048 Integer by D-Wave Quantum Computer.” To get straight to the point - the title is misleading. The authors did NOT factor a general RSA-2048 key (as used in real cryptography); instead, they factored a specially structured 2048-bit semiprime chosen to be extremely easy.
Read More » -
Nov- 2024 -14 NovemberQuantum Security & PQC News
NIST IR 8547: A Roadmap for Transitioning to Post‑Quantum Cryptography
In November 2024, the U.S. National Institute of Standards and Technology (NIST) released NIST Internal Report 8547 (Initial Public Draft), titled “Transition to Post-Quantum Cryptography Standards.” This document serves as a strategic roadmap for phasing out today’s quantum-vulnerable cryptography (like RSA and ECC) and migrating to post-quantum cryptographic (PQC) standards. The draft lays out timelines, new standards, and guidance to…
Read More » -
6 NovemberIndustry & Ecosystem News
Banque de France & MAS Complete Landmark Post-Quantum Email Security Experiment
The Banque de France (BDF) and the Monetary Authority of Singapore (MAS) have successfully completed a groundbreaking cross-border experiment in post-quantum cryptography (PQC), carried out between Paris and Singapore using ordinary internet infrastructure. This joint trial marks an important milestone in fortifying digital communications against future quantum-enabled cyber threats. By demonstrating quantum-resistant encryption and digital signatures on real-world email systems,…
Read More » -
Oct- 2024 -28 OctoberQuantum Policy, Standards & Regulation News
CISA’s Post-Quantum OT Guidance: Key Takeaways and Next Steps for CISOs
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a landmark report titled ”Post-Quantum Considerations for Operational Technology.” This publication marks the first dedicated federal guidance on how quantum computing threats specifically impact industrial control systems (ICS) and other operational technology (OT) environments. The report comes with a clear warning: OT systems could lag behind IT in achieving quantum-resistant security,…
Read More » -
Sep- 2024 -29 SeptemberQuantum Policy, Standards & Regulation News
G7 Cyber Experts Warn Financial Sector: Prepare Now for Quantum Computing’s Opportunities and Threats
A recent statement by the G7 Cyber Expert Group (CEG) - an advisory panel to G7 finance ministries and central banks - sounds a dual alarm and call to action on quantum computing. In a memo released in late September, the group highlights quantum computing as both a revolutionary opportunity and a looming cyber risk for the financial system. The…
Read More » -
Aug- 2024 -17 AugustQuantum Security & PQC News
CISA Unveils Plan to Automate Post-Quantum Crypto Inventory
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released a “Strategy for Migrating to Automated Post-Quantum Cryptography Discovery and Inventory Tools” on August 15, 2024. In essence, this strategy is a roadmap for federal civilian agencies to identify where they are using cryptography that will be vulnerable to quantum attacks, using automated tools to create an inventory of those…
Read More » -
13 AugustQuantum Policy, Standards & Regulation News
NIST Unveils Post‑Quantum Cryptography (PQC) Standards
The U.S. National Institute of Standards and Technology (NIST) has officially announced the release of its first set of post-quantum cryptography (PQC) standards, naming four quantum-resistant algorithms selected to protect data against future quantum-computer attacks. These four algorithms – CRYSTALS-Kyber, CRYSTALS-Dilithium, FALCON, and SPHINCS+ – emerged as the winners of NIST’s multi-year global competition to develop encryption and digital signature…
Read More » -
Jul- 2024 -31 JulyQuantum Security & PQC News
White House PQC Cost Estimate: $7.1B to Migrate Federal Civilian System
A new July 2024 report to Congress from the Office of Management and Budget - prepared with the Office of the National Cyber Director and in collaboration with Cybersecurity and Infrastructure Security Agency and National Institute of Standards and Technology - puts a rough, government-wide price tag of ~$7.1B (2024 dollars) on migrating prioritized federal civilian information systems to post‑quantum cryptography (PQC) over 2025–2035. The number matters less as a “precise budget” than…
Read More »
