France to Stop Certifying Non-Quantum-Safe Encryption

Summary

France's cybersecurity agency, ANSSI, will cease certifying security products that do not incorporate quantum-resistant encryption starting in 2027. This policy aims to accelerate the transition to post-quantum cryptography, with a goal for businesses to only purchase quantum-safe products by 2030.

IFF Assessment

FOE

This news is considered bad for defenders because the transition to quantum-safe encryption is a complex and potentially disruptive process, and delaying it or facing certification hurdles could leave systems vulnerable to future quantum computing threats.

Defender Context

As quantum computing capabilities advance, current encryption methods will become vulnerable. Organizations must proactively plan for the transition to quantum-resistant cryptography, which will involve significant updates to infrastructure and security protocols. Defenders should monitor advancements in post-quantum cryptography standards and plan for phased rollouts to maintain security in the face of future quantum threats.

Read Full Story →