The Race To Avert Quantum Computing Threat With New Encryption Standards - The World News -

After six years of grueling, multi-round analysis involving cryptographers from 25 countries, NIST announced its first four finalists in 2022, culminating in the release of three new standards in 2024.

After years of rigorous testing by cryptographers from around the world, 2024 marked a turning point. NIST officially released the first set of finalized algorithms for general encryption. The flagship standard, known as , is designed for the general encryption of data, while CRYSTALS-Dilithium is designed for digital signatures (proving who sent a message). After six years of grueling, multi-round analysis involving

Major players are already moving. has been running hybrid post-quantum experiments in Chrome (using Kyber) since 2021. Cloudflare and Mozilla have followed suit. Apple’s iMessage introduced PQ3—a post-quantum security upgrade—in early 2024. Signal Protocol has added PQXDH. The flagship standard, known as , is designed

This creates a unique temporal paradox for national security. A government secret classified for "Top Secret" status today usually has a shelf life of 25 to 50 years. If the encryption protecting that secret becomes obsolete in 15 years, the intelligence is compromised long before its classification expires. The race, therefore, is not just about the future, but about protecting the past. Cloudflare and Mozilla have followed suit

The math is devastating: A classical computer might take trillions of years to crack a standard 2,048-bit RSA key. A fault-tolerant quantum computer with enough logical qubits (estimates range from 2,000 to 20,000) could theoretically do it in hours .

However, QKD is not a panacea. It requires dedicated fiber optics or line-of-sight satellite links, making it impossible to retrofit for the global internet backbone. Most experts agree: PQC will be the universal standard for general-purpose encryption, while QKD will remain a niche, ultra-high-security solution for banks, militaries, and critical grid operators.

NIST’s Dustin Moody offers a final, sobering analogy: “In the 1990s, we knew the year 2000 was coming, and we spent billions to fix the date bug. But we knew exactly when Y2K would happen. We don’t know when Y2Q will happen. It could be tomorrow. It could be ten years from now. The only responsible course is to assume it’s already here and encrypt accordingly.”