Quantum Security & PQC
Post-quantum cryptography, PQC migration, crypto-agility, cryptographic inventory, CBOM, and practical quantum readiness.
-
Post-Quantum, PQC, Quantum Security
The Anatomy of Quantum Denial: What Bitcoin’s Response to the Quantum Threat Teaches Every CISO
At Bitcoin 2026, the same main stage hosted engineers building quantum-resistant upgrades and a trio claiming quantum computers can never work because Bitcoin proves time is discrete. The dysfunction that produced this scene plays out in every enterprise boardroom facing…
Read More » -
Post-Quantum, PQC, Quantum Security
Crypto-Agility Is an Architecture Problem, Not a Library Swap
Every PQC migration guide tells you to "be crypto-agile." After leading migrations at Fortune Global 500 scale, I can tell you where that advice fails: HSMs that can't upgrade, protocols with hard-coded algorithms, and embedded devices that will outlive the…
Read More » -
Post-Quantum, PQC, Quantum Security
The Signature Supply Chain: How Deep Does Digital Trust Go?
From TPM attestation keys to container image signatures, modern systems depend on dozens of signature layers most security teams have never fully mapped. This deep dive exposes the full anatomy of the trust infrastructure a quantum computer would compromise.
Read More » -
Post-Quantum, PQC, Quantum Security
PQC Standards Fragmentation: What Multinationals Must Plan For Now
Your New York office runs ML-KEM per NIST. Your Frankfurt office needs ANSSI-recommended hybrids. Your Shanghai office will require Chinese ICCS algorithms. Your Seoul subsidiary uses KpqC. You need one migration plan. This article maps how to build it.
Read More » -
Quantum Computing
The Decoder Bottleneck: The CRQC Challenge Nobody Is Talking About
Qubit count gets the headlines. Error rates get the analysis. But the classical decoder that must process millions of error signals per second in real time gets almost no attention outside the QEC research community. It may be the capability…
Read More » -
Post-Quantum, PQC, Quantum Security
Grover’s Algorithm vs AES – Why “Ignore It” Is Almost Right
The consensus says Grover will never break AES-128. The math checks out on today's assumptions. But those assumptions are built on surface codes and superconducting hardware, and the ground is already shifting. Scan the quantum computing coverage of Bitcoin and…
Read More » -
Post-Quantum, PQC, Quantum Security
PQC Signature Migration Before Encryption: Why Trust Infrastructure Comes First
Most PQC migration guides tell you to protect data first. But recent research confirms that signature algorithms fall faster, and the blast radius of a compromised signing key dwarfs that of a decrypted session. Here's why I'm telling CISOs to…
Read More » -
Post-Quantum, PQC, Quantum Security
The CRQC Scorecard: How Close Is Each Quantum Modality to Breaking Your Encryption?
Yesterday, two papers landed that set social media on fire. Google Quantum AI published a landmark resource estimate showing that fewer than 500,000 superconducting qubits could break Bitcoin's elliptic curve cryptography in under nine minutes. Hours later, a team from…
Read More » -
Post-Quantum, PQC, Quantum Security
No One Has Secretly Broken RSA-2048 or RSA-4096 — Here’s the Science
If someone tells you RSA-2048 or even RSA-4096 has been secretly cracked, they are either lying to you or have been lied to. There is no third option that is consistent with physics, engineering, the observable behavior of governments and…
Read More » -
Post-Quantum, PQC, Quantum Security
Bitcoin’s Quantum Timeline Is Not RSA’s Quantum Timeline
Most quantum-risk-to-Bitcoin analyses rehash RSA-2048 timelines. They're missing the point. Bitcoin doesn't use RSA. It uses 256-bit ECC - and Shor's algorithm will break that first. Scan the quantum computing coverage of Bitcoin and you will find a remarkable pattern.…
Read More » -
Post-Quantum, PQC, Quantum Security
Q-FUD: The Quantum Panic Industry
Cybersecurity has always had a FUD problem. “FUD” (fear, uncertainty, and doubt) is the oldest trick in enterprise security marketing: paint a worst-case scenario, imply you’re already compromised, sprinkle in enough jargon to make the buyer feel outgunned, and then…
Read More » -
Post-Quantum, PQC, Quantum Security
Pinnacle Architecture: 100,000 Qubits to Break RSA-2048, but at What Cost?
Iceberg Quantum's Pinnacle Architecture paper claims RSA-2048 can be factored with fewer than 100,000 physical qubits - a genuine 10× reduction over the previous state of the art - by replacing surface codes with quantum LDPC codes. The result is…
Read More » -
Post-Quantum, PQC, Quantum Security
Payments and the Race to Quantum Safety / Post-Quantum Cryptography (PQC)
The payments industry has navigated big cryptographic transitions before. The migration from magnetic stripes to EMV chips took the better part of two decades and cost billions. The shift from SHA-1 to SHA-256 certificates was painful but bounded - it…
Read More » -
Post-Quantum, PQC, Quantum Security
120,000 Tasks: Why Post‑Quantum (PQC) Migration Is Enormous
When I tell fellow CISOs, board members, or even seasoned program managers that the integrated program plan for a comprehensive quantum security / post-quantum cryptography (PQC) migration I recently worked on contained over 120,000 discrete tasks, the reaction is almost…
Read More » -
Post-Quantum, PQC, Quantum Security
The Cryptographic Iceberg Inside a Mobile Banking Transaction
A single mobile banking payment triggers millions of cryptographic function calls across nine parties. Here's what actually happens - from silicon to settlement - and why it matters for quantum readiness. The Cryptographic Iceberg Inside a Mobile Banking Transaction 320…
Read More »
