NCSC Feed: Setting direction for the UK’s migration to post-quantum cryptography

Mar 20, 2025

—

Source URL: https://www.ncsc.gov.uk/blog-post/setting-direction-uk-migration-to-pqc
Source: NCSC Feed
Title: Setting direction for the UK’s migration to post-quantum cryptography

Feedly Summary: Why the key milestones for PQC migration are part of building and maintaining good cyber security practice.

AI Summary and Description: Yes

Summary: The text discusses the UK’s National Cyber Security Centre (NCSC) guidance on transitioning to post-quantum cryptography (PQC) in response to the looming threats from quantum computing. It highlights the importance of preparing organizations for this multi-year migration, provides key milestones for planning, and emphasizes the need for sector-specific considerations and skill development.

Detailed Description: The text emphasizes the urgency and significance of migrating to post-quantum cryptography (PQC) as a necessary step for securing sensitive data against the anticipated capabilities of quantum computers. The National Cyber Security Centre (NCSC) has identified key areas of focus for UK government and critical national infrastructure (CNI) sectors to ensure resilience in light of this emerging threat.

– **Key Themes:**
– **Post-Quantum Cryptography (PQC):** The need for organizations to start planning their transition as quantum computing poses a threat to existing cryptographic practices.
– **Awareness and Support:** NCSC’s role in not only outlining the threat but also in assisting the UK government and CNI sectors in preparing for this transition.
– **Guidance Document:** The introduction of a new guidance, ‘Timelines for migration to post-quantum cryptography,’ which provides a roadmap for organizations to undertake this migration effectively.
– **Multi-Year Effort:** Recognizes that migrating to PQC is complex and will require planning over several years, involving multiple investment cycles.
– **Key Steps and Milestones:** The guidance outlines essential steps to conduct the migration, highlighting specific cryptography and PQC elements critical for implementation at each stage.
– **Sector-Specific Variations:** Discusses how the challenges of PQC migration will differ across various sectors and the evolution of the PQC ecosystem as industry players and standards bodies contribute to its development.

This text is relevant for security and compliance professionals as it points out the necessity for organizations to start preparing for a fundamental shift in cryptographic practices. It indicates a proactive stance on security amidst advancing technology, suggesting that entities must remain vigilant and adaptable in their security strategies to mitigate future risks associated with quantum computing damage to traditional encryption.

a Act AI and anti Aria art as awareness building C capabilities challenges CIA co compliance compliance professionals compute computer Computing critical critical national infrastructure cross Crypto cryptographic cryptographic practices cryptography cyber cyber security D data de development document e ecosystem effective encryption for future g Gen Go government graph guidance guidance document H high Highlight HR http HTTPS implementation in industry industry players infrastructure investment k Key l led Li migration multi N nation National Cyber Security Centre national infrastructure NCSC no o of on one only OPM organization organizations out over phi planning play point post post-quantum post-quantum cryptography pre proactive proactive stance professionals quantum quantum computers quantum computing quantum cryptography R rate RCE resilience response Risk risks Ro Role s sec sector security security and compliance security strategies sensitive data shift side Sig SoC source specific specific variations SSE SSO standards start system T tech technology text the threat threats Time to Tor TP transition UI UK UK government up US V Ware Wi x