France Says It Will Won't Certify Security Products That Aren't Quantum-Resistent Starting in 2027

Insider Brief

France’s cybersecurity agency ANSSI will stop certifying security products that lack quantum-resistant encryption starting in 2027, effectively accelerating the country’s transition to post-quantum cryptography.

ANSSI Chief of Staff Samih Souissi said businesses should purchase only quantum-safe security products by 2030, citing concerns that attackers could store encrypted data today and decrypt it with future quantum computers.

Industry participants at the France Quantum conference said demand for quantum-safe security solutions is growing, while some experts warned that widely used cryptographic standards such as ECDSA could be among the first vulnerable to future quantum attacks.

France’s national cybersecurity agency, ANSSI, will stop certifying security products that do not include quantum-resistant encryption beginning in 2027, a policy that will effectively require government agencies and operators of critical infrastructure to move away from traditional cryptographic systems, according to comments made at the France Quantum conference and reported by Reuters.