◈ AI Security Intelligence ← All terms
Governance  ·  Glossary

Post-quantum cryptography (PQC) migration

Definition
Today's encryption that protects AI systems, cloud data, and communications relies on mathematical problems that future quantum computers could solve quickly, breaking the encryption. Post-quantum cryptography refers to new encryption methods designed to remain secure even against quantum computers. The US government has now mandated that all federal agencies and their contractors migrate to these new standards by 2030–2031.
Why it matters
All AI systems that handle sensitive or regulated data rely on encryption; failure to migrate to quantum-resistant standards exposes organisations to a future 'harvest now, decrypt later' threat — adversaries collecting encrypted data today to unlock it once quantum computers mature. US federal contractors face binding 2030 deadlines.
Demonstrated by recent findings
White House Executive Order 14409: 'Securing the Nation Against Advanced Cryptographic Attacks' — Mandated Federal PQC Migration with Hard 2030/2031 Deadlines and CBOM Requirement
References
White House Executive Order 14409 — Securing the Nation Against Advanced Cryptographic AttacksNIST Post-Quantum Cryptography Standards
Track this in the live feed See how this plays out in real AI security and governance developments.
Open the feed →