May 20 2025

Steal Now, Crack Later: The Urgency of Quantum-Safe Security

Category: Cyber resilience,Data encryptiondisc7 @ 8:29 am

The security of traditional encryption hinges on the computational difficulty of solving prime number-based mathematical problems. These problems are so complex that, with today’s computing power, deciphering encrypted data by brute force—often referred to as “killing it with iron” (KIWI)—is practically impossible. This foundational challenge has kept data secure for decades, relying not on randomness but on insurmountable workload requirements.

However, the landscape is changing rapidly with the emergence of quantum computing. Unlike classical machines, quantum computers are built for solving certain types of problems—like prime factorization—exponentially faster. This means encryption that’s currently unbreakable could soon become vulnerable. The concern isn’t theoretical; malicious actors are already collecting encrypted data, anticipating that future quantum capabilities will allow them to decrypt it later. This “steal now, crack later” approach makes today’s security obsolete in tomorrow’s quantum reality.

As quantum computing advances, the urgency to adopt quantum-safe cryptography increases. Traditional systems need to evolve quickly to defend against this new class of threats. Organizations must prepare now by evaluating whether their current cryptographic infrastructure can withstand quantum-enabled attacks. Failure to act could result in critical exposure when quantum machines become operational at scale.

Adaptability, compliance, and resilience are the new pillars of a secure, future-proof cybersecurity posture. This means not only upgrading encryption standards but also rethinking security architecture to ensure it can evolve with changing technologies. Organizations must consider how quickly and seamlessly they can shift to quantum-safe alternatives without disrupting business operations.

Importantly, the way organizations view cybersecurity must also evolve. Many still treat security as a cost center, a necessary but burdensome investment. With the rise of generative AI and quantum computing, security should instead be seen as a value creator—a foundational component of digital trust, innovation, and competitive advantage. This mindset shift is crucial to justify the investments needed to transition into a quantum-safe future.

Quantum computing is the next frontier. Sundar Pichai predicts that within 5 years, quantum will solve problems that classical computers can’t touch.

Feedback:
There is an urgent need for quantum-resilient security measures. The post successfully communicates technical risk without diving into complex math, which makes it accessible. My suggestion would be to expand slightly on practical next steps—like adopting post-quantum cryptographic algorithms (e.g., those recommended by NIST), running quantum-readiness assessments, and building awareness across leadership. Adding these elements would enhance the piece’s actionable value while reinforcing the central message.

The shift to quantum-safe standards will take several years, as the standards continue to mature and vendors gradually adopt the new technologies. It’s important to take a flexible approach and be ready to update or replace cryptographic components as needed. Adopting a hybrid strategy—combining classical and quantum-safe algorithms—can help maintain compliance with existing requirements while introducing protection against future quantum threats.

Quantum Computing and Information: A Scaffolding Approach

InfoSec services | InfoSec books | Follow our blog | DISC llc is listed on The vCISO Directory | ISO 27k Chat bot | Comprehensive vCISO Services | ISMS Services | Security Risk Assessment Services

Tags: Quantum computing


Jun 04 2021

Quantum computing: How should cybersecurity teams prepare for it?

Category: cyber security,Information SecurityDISC @ 2:14 pm

Our community – that is, technologists, mathematicians and information assurance professionals – has generally adapted well to changes in the technology landscape.

At the start of the Cold War, the western security apparatus sought to understand the actions of their adversaries by intercepting radio signals bouncing off the ionosphere and analyzing the messages they carried. Later, when the Soviets moved to microwave transmissions, that same security apparatus deployed cutting-edge line-of-sight interception techniques.

Then, in 1977, after the Soviets began to successfully encrypt their communications, the NSA launched the Bauded Signals Upgrade program, delivering a supercomputer designed to compare encrypted messages with elements of plain text transmitted by mistake, allowing the agency to break many of the Soviets’ high-level codes. Time and time again, our innovation has kept us safe, but only when we have prepared to meet the threat.

Quantum information theory, which has been explored since the beginning of the 20th century, has led to an exciting yet dangerous new prospect: new quantum algorithms to solve computational problems which have thus far proven to be intractable – or at least unachievable within a useful period – by classical computers. One such problem is the breaking of the Advanced Encryption Standard, a key pillar of modern data encryption.

A joint research team of engineers from Google and the Swedish Royal Institute of Technology published a study that theorized the breaking of a 2048 bit key in just 8 hours, something that would take today’s classical computers over 300 trillion years. The catch? This theory requires a 20 million-qubit computer, and the largest quantum computer that exists today has only 65.

Their study, alongside many like it, tells us that quantum technology will present the greatest threat to the security of our critical systems in the history of computing. It may even be useful to us in future conflicts. However, quantum computers will need considerably more processing power than is available today and will require a significantly lower error rate if they are to be utilized for cyberspace operations.

To meet this challenge, institutions across the world are rushing to develop quantum computers that are capable of delivering on the promising theory.

The U.S. National Institute of Standards and Technology is currently evaluating over 60 methods for post-quantum cryptography, quantum key distribution, and other security applications. Early indications are that quantum technology will provide an ability to detect, defend, and even retaliate against all manner of future threats.

Away from security, most people understand that quantum computing has immense potential for good â€“ with applications in the scientific and medical research fields easy to imagine. However, this vast computing power could also be used to undermine the classical computer systems that our nation relies upon so heavily.

DISC InfoSec Shop

Cryptography and Quantum Computing

Tags: Quantum computing