Stay informed about the latest developments in post-quantum cryptography, government mandates, and industry adoption.
Key milestones in the global transition to quantum-resistant cryptography, from policy directives to compliance deadlines.
| Year | Milestone | Details |
|---|---|---|
| 2022 | White House NSM-10 | National Security Memorandum directing agencies to begin PQC inventory and migration planning. |
| 2022 | NSA Publishes CNSA 2.0 | Requires all National Security Systems to transition to ML-KEM, ML-DSA, and approved quantum-resistant algorithms. |
| 2022 | OMB M-23-02 Directive | Federal agencies must inventory all cryptographic systems, prioritize high-value assets, and submit migration plans. |
| 2024 | NIST Finalizes PQC Standards | FIPS 203 (ML-KEM), FIPS 204 (ML-DSA), FIPS 205 (SLH-DSA) published. End of 8-year standardization process. |
| 2024 | Federal Migration Cost: $7.1B | White House estimates government-wide PQC migration at approximately $7.1 billion over 2025 to 2035. |
| 2025 | NIST Selects HQC | Hamming Quasi-Cyclic selected as code-based backup to lattice-based ML-KEM. Draft standard expected 2026. |
| 2025 | EU PQC Roadmap | European Commission publishes comprehensive PQC migration recommendations for member states. |
| 2025 | EO 14306 and CISA Product List | Federal agencies directed to buy PQC-only products in "Widely Available" categories. |
| 2025 | CNSA 2.0: Software Deadline | Vendors must support and prefer quantum-resistant algorithms in new software and cloud services. |
| 2027 | CNSA 2.0: Acquisition Deadline | All new NSS equipment acquisitions must be CNSA 2.0-compliant starting January 1, 2027. |
| 2031 | CNSA 2.0: Contractor Deadline | Government contractors operating NSS required to implement ML-KEM and ML-DSA. |
| 2033 | UK NCSC Deadline | UK targets full PQC adoption across critical national infrastructure and government systems. |
| 2035 | NSM-10: Full Migration | All federal National Security Systems required to be fully quantum-resistant. |
Federal directives, NIST standards, and government mandates driving PQC adoption.
| Date | Headline |
|---|---|
| Feb 2026 | Google Announces Merkle Tree Certificates for Post-Quantum HTTPS. Chrome develops MTCs to shrink PQ authentication data from ~14,700 bytes to 736 bytes. |
| Jan 2026 | CISA Publishes PQC Product Categories per EO 14306. Federal agencies directed to buy only PQC-capable products in "Widely Available" categories. |
| Oct 2025 | Over 50% of Web Traffic Now Protected by Post-Quantum Key Agreement. Cloudflare reports majority of human-initiated web traffic uses hybrid ML-KEM + X25519. |
| Sep 2025 | NCCoE Releases PQC Migration Practice Guide. SP 1800-38 covering cryptographic discovery, interoperability testing, and HSM integration. |
| Jun 2025 | Executive Order 14306: Sustaining Cybersecurity Efforts. Continues the bipartisan quantum security initiative. Affirms 2035 full-migration deadline. |
| May 2025 | Federal Survey: Only 5% Have Deployed Quantum-Safe Encryption. Despite 69% recognizing quantum as a top-three concern, just 5% have implemented PQC. |
| Mar 2025 | NIST Selects HQC as Fifth Post-Quantum Algorithm. Code-based backup to lattice-based ML-KEM. Different mathematical foundation for defense-in-depth. |
| Jan 2025 | EU Issues Comprehensive Post-Quantum Cryptography Roadmap. Urges immediate action across member states for critical infrastructure. |
| Aug 2024 | NIST Releases First 3 Finalized Post-Quantum Standards. FIPS 203/204/205 published. End of 8-year standardization process begun in 2016. |
Product launches, protocol upgrades, and enterprise deployments across the PQC ecosystem.
| Date | Headline |
|---|---|
| Jul 2025 | Microsoft Launches Azure Quantum-Safe with PQC Accelerator. Hardware-accelerated PQC for Azure targeting 10 to 15x performance improvement. |
| Jun 2025 | HP Launches Quantum-Resistant PC Series. Enterprise PCs with integrated PQC hardware modules for CNSA 2.0 compliance. |
| Jun 2025 | Orange Launches Quantum Defender Infrastructure. PQC/QKD-compatible network infrastructure with Toshiba Europe hardware. |
| Nov 2024 | Chrome Switches to ML-KEM for Post-Quantum TLS. Chrome 131 upgrades to final ML-KEM-768 + X25519 hybrid key agreement. |
| Feb 2024 | Apple Deploys PQ3 Post-Quantum Protocol for iMessage. Hybrid ML-KEM + ECC key exchange with ongoing post-quantum ratcheting. |
| Sep 2023 | Signal Adds PQXDH Post-Quantum Key Exchange. First major messaging app with PQ protection via PQXDH protocol. |
FIPS 203/204/205 are published. HQC selected as backup. The "wait for standards" excuse is over.
PQC migration spans administrations: NSM-10 (Biden, 2022) to EO 14306 (Trump, 2025). CNSA 2.0 acquisition deadline: January 1, 2027.
Software-only PQC creates 100 to 1000x performance bottlenecks. Hardware acceleration required for TLS termination, HSMs, and code signing.
50%+ of web traffic uses PQ key agreement. Enterprise and IoT infrastructure lags significantly behind.
US (CNSA 2.0, 2027 to 2035), EU (2025 roadmap), UK NCSC (2033 deadline). Coordinated timelines converging.
Adversaries are already collecting encrypted data for future quantum decryption. Every day without PQ protection increases exposure.
Pilot program now accepting applications. Request evaluation hardware or talk to our engineering team.