The NSA's Commercial National Security Algorithm Suite 2.0 mandates a complete transition to quantum-resistant cryptography across all national security systems. Federal agencies face hard deadlines with no extensions, and the clock is already running.
Federal agencies do not have the luxury of waiting for the quantum threat to materialize. Multiple overlapping mandates create an urgent timeline for PQC adoption, each with specific requirements for algorithm selection, validation levels, and supply chain integrity.
Adversaries are already conducting "harvest now, decrypt later" attacks against classified and sensitive communications. Data encrypted today with RSA or ECC may be decryptable within 10 to 15 years, making immediate action essential for information with long-term sensitivity.
| Mandate | Description |
|---|---|
| CNSA 2.0 (NSA) | Mandatory PQC algorithms for all National Security Systems |
| OMB M-23-02 | Federal cryptographic system inventory and migration planning |
| NSM-10 | Quantum-resistant cryptography on national security systems |
| FIPS 140-3 | Cryptographic module validation for federal procurement |
| EO 14306 | CISA PQC product categories, buy PQC-only in listed categories |
Software-only PQC cannot achieve the validation levels required for classified systems. Hardware cryptographic boundaries are essential for Level 3+ certification. QUAC-100 targets Level 3 validation with atsec Information Security.
Defense applications require domestic design and fabrication. Dyber's US-based development and CHIPS Act-aligned manufacturing meet supply chain requirements. No foreign dependencies.
Nation-state adversaries have sophisticated side-channel capabilities. AI-powered threat detection identifies DPA, SPA, timing, and electromagnetic attacks in real time with >99.5% accuracy.
No external random number generators needed. On-card quantum entropy at >800 Mbps eliminates a common attack vector and simplifies FIPS boundary definition.
National security systems handling classified data require the highest levels of cryptographic assurance. The QUAC-100 provides FIPS 140-3 Level 3 validation (IUT with atsec) with hardware-enforced cryptographic boundaries, tamper detection, and zeroization capabilities. All CNSA 2.0 mandated algorithms are hardware-accelerated natively.
Targets: SIPRNet, JWICS, Tactical Networks
| Compliance | Status |
|---|---|
| FIPS 140-3 | Level 3 (IUT, atsec) |
| CNSA 2.0 | Compliant |
| Supply Chain | US-based |
| Tamper Response | Active zeroization |
Civilian agencies under OMB M-23-02 must inventory cryptographic systems and plan migration to PQC. QuantaVirt enables a phased approach: start with software-based PQC for immediate compliance visibility, then deploy QUAC-100 hardware for high-throughput systems like PKI, email gateway encryption, and inter-agency communication links.
Targets: DHS, Treasury, HHS, DOE
| Procurement | Status |
|---|---|
| GSA Schedule | Pursuing |
| SEWP | Via partner |
| Channel | Carahsoft |
| NAICS | 334118, 511210 |
SCIFs and secure facilities need network-attached HSM capability with PQC support. QuantaHSM provides a 1U rack-mount appliance with integrated QRNG, supporting PKCS#11 and KMIP interfaces over SFP+ (10GbE), RJ45, or OSFP (up to 400GbE) connections. Air-gapped deployment options available.
Targets: SCIF, Air-Gapped Networks, Data Centers
| QuantaHSM | Specification |
|---|---|
| Form Factor | 1U Rack |
| Network | SFP+ / RJ45 / OSFP |
| Management | PKCS#11, KMIP, REST |
| QRNG | Integrated |
PCIe-based PQC accelerator. 1.2M+ ops/sec, integrated QRNG, targeting FIPS 140-3 Level 3. The core of classified network protection.
Network-attached HSM with native PQC. 1U rackmount, PKCS#11/KMIP, integrated QRNG. Built for secure facilities and SCIFs.
6x6 mm PQC accelerator chiplet for SoC integration. US-fabricated on GlobalFoundries 22FDX. Designed for defense-grade embedded systems.
Pilot program now accepting applications. Request evaluation hardware or talk to our engineering team.