Until now, IT security has largely been based on the assumption that certain encryptions and passwords are practically impossible to crack, even with supercomputers. Quantum computers are pulverising this paradigm, says CIOmove Paul Brian Contino. Everything we protect today – personal data, account data, health data, intellectual property and even state secrets: Nothing would be safe from quantum computers.
In future, security must therefore be based on principles that cannot be broken by computing power. Security strategies must be designed for long-term confidentiality – especially for sensitive data (patents, state secrets). Security is becoming an infrastructure issue, and CIOs must make networks, the cloud and connected devices “quantum-proof”. In addition, crypto migration, quantum resilience and investments in infrastructure must be anchored in governance.
Q-Day is approaching and with it the moment when quantum computers will be able to crack classic encryption and thus make RSA, ECC and similar cryptosystems superfluous. But are any of us prepared for this situation yet? Quantum encryption is still a dream of the future, although the first pilot projects, for example as part of the European Quantum Communication Infrastructure ( EuroQCI ), already exist.
2030, 2035: These dates are mentioned when it comes to specifying the time horizon in which quantum encryption will become a realistic option.
Paul suggests discussing future threats, the state of preparedness and the urgent shift to post-quantum security at CIOmove: Who is at risk, what is at risk and what do CIOs need to do to ensure resilience, preparedness and coordinated responses?
