I am following the progress of IBM and Google in quantum supremacy. My concern is our current data encryption. When exactly will Shor’s algorithm become a practical threat to RSA-2048 or ECC? Are we at a point where we should actively migrate our sensitive financial archives to post-quantum cryptographic standards, or is the "Q-Day" still a decade away for most enterprises?
3 answers
The consensus in the cybersecurity community is shifting toward "harvest now, decrypt later" as a major risk. Even if a cryptographically relevant quantum computer (CRQC) is years away, state actors are already capturing encrypted data to decrypt it once the technology matures. This is why NIST has already started finalizing post-quantum cryptography (PQC) standards. At iCertGlobal, we advise starting a "crypto-agility" audit now. This means identifying where your hard-coded encryption exists and ensuring your infrastructure can swap out vulnerable algorithms for lattice-based cryptography without a total system overhaul.
Are you more concerned about data at rest in your long-term backups, or is the threat to real-time TLS handshakes your primary focus for the next two years?
Don't overlook the impact on blockchain. Most current wallets rely on secp256k1, which is highly vulnerable to quantum attacks in the near future.
William is right. The transition for decentralized ledgers will be much more complex than centralized ones, making it a critical area for early PQC adoption.
Robert, our primary worry is the long-term backups. We store medical records that must remain confidential for 50 years. If those archives are harvested today, they could be easily breached in 2030 or 2035. That’s why we are looking into integrating Quantum Key Distribution (QKD) for our primary data centers while transitioning our software to use the newer ML-KEM and ML-DSA algorithms as they become more stable in the commercial libraries.