Major changes are coming to the world of cybersecurity as organizations race to prepare for the quantum computing era. The National Institute of Standards and Technology (NIST) has announced plans to phase out several widely-used encryption algorithms by 2030, with complete elimination by 2035.
The algorithms slated for retirement include RSA, ECDSA, and EdDSA - cornerstones of current public-key cryptography. These algorithms, while secure against classical computers, could be broken by future quantum computers using Shor's Algorithm.
To address this challenge, NIST has introduced new quantum-resistant standards, including ML-KEM for encryption. This algorithm is designed specifically to withstand attacks from both classical and quantum computers.
The transition timeline gives organizations approximately 6-7 years to upgrade their cryptographic systems. While no quantum computers currently exist that can break today's encryption, NIST's proactive approach aims to protect against future threats.
Notably, symmetric encryption algorithms that provide at least 128 bits of security will remain unaffected by these changes. However, the push toward quantum-resistant algorithms like ML-KEM represents one of the largest cryptographic transitions in recent history.
The global cybersecurity community is watching these developments closely, particularly as the European Union has yet to announce its position on post-quantum cryptography. Many organizations are waiting for additional international alignment before beginning large-scale implementations of the new standards.
As the 2030 deadline approaches, the adoption of ML-KEM and other post-quantum algorithms will likely accelerate across industries, marking a new chapter in the evolution of digital security.