Q-Day Is Not a Punchline: What Every Leader Needs to Understand About Post-Quantum Cryptography

Introduction

There's a concept in cybersecurity circles called "harvest now, decrypt later." The idea is straightforward and unsettling: adversaries — nation-states, sophisticated criminal organizations, anyone with sufficient resources and patience — are collecting encrypted communications and data today, storing them, and waiting. Waiting for the day when a quantum computer powerful enough to break current encryption finally exists.

That day doesn't have a fixed date on the calendar. But the data being collected now may still be sensitive then. Personnel records. Medical histories. Diplomatic cables. Intelligence assessments. Strategic communications. All of it encrypted with algorithms that quantum computers will eventually be able to break.

This is not science fiction. It is the reason NIST spent eight years developing new encryption standards that quantum computers cannot crack. And in August 2024, those standards arrived.

What NIST Has Done

NIST finalized three post-quantum standards in August 2024: ML-KEM for key exchange and general encryption, ML-DSA for digital signatures, and SLH-DSA as a backup signature algorithm. In March 2025, NIST added HQC as a backup for general encryption, providing redundancy through different mathematical foundations.

These are finalized Federal Information Processing Standards — mandatory for federal systems and increasingly adopted by international standards bodies. The IETF is already incorporating ML-KEM into the TLS protocol that secures most of the internet.

The Migration Timeline

NIST IR 8547 establishes that quantum-vulnerable algorithms will be deprecated by 2035. For non-technical leaders, 2035 may seem distant. It is not. Cryptographic migrations are among the most complex undertakings in IT. Every system, product, protocol, and application that uses encryption must be inventoried, assessed, updated or replaced, and tested.

CISA, NSA, and NIST jointly recommend organizations begin immediately: establish a quantum-readiness roadmap, build a cryptographic inventory, assess supply chain exposure, and engage technology vendors.

The organizations that start now will have options. The organizations that wait will have a crisis.

Closing Reflection

Post-quantum cryptography is a test of institutional seriousness. It asks whether organizations can invest in solving problems that haven't fully materialized yet, because the evidence says those problems are coming. The standards are ready. The guidance is published. The question now is execution.

Sources

National Institute of Standards and Technology. Post-Quantum Cryptography. NIST. https://www.nist.gov/pqc

NIST. NIST Releases First 3 Finalized Post-Quantum Encryption Standards. August 13, 2024. https://www.nist.gov/news-events/news/2024/08/nist-releases-first-3-finalized-post-quantum-encryption-standards

NIST. NIST Selects HQC as Fifth Algorithm for Post-Quantum Encryption. March 11, 2025. https://www.nist.gov/news-events/news/2025/03/nist-selects-hqc-fifth-algorithm-post-quantum-encryption

NIST. NIST IR 8547: Transition to Post-Quantum Cryptography Standards. 2024. https://csrc.nist.gov/pubs/ir/8547/ipd

CISA, NSA, and NIST. Quantum-Readiness: Migration to Post-Quantum Cryptography. https://www.cisa.gov/resources-tools/resources/quantum-readiness-migration-post-quantum-cryptography

NIST NCCoE. Migration to Post-Quantum Cryptography. https://www.nccoe.nist.gov/applied-cryptography/migration-to-pqc