topic NSM-10 US Government Notice in Industry News https://community.isc2.org/t5/Industry-News/NSM-10-US-Government-Notice/m-p/73075#M7113 <P>Hi All</P><P>&nbsp;</P><P><SPAN class=""><SPAN>For US government agencies, the release of post-quantum standards triggers clauses within NSM-10.<BR /><BR />Deprecation timelines are due in 90 days:<BR /><BR />"Within 90 days of the release of the first set of NIST standards for quantum-resistant cryptography... the Secretary of Commerce, through the Director of NIST, shall release a proposed timeline for the deprecation of quantum-vulnerable cryptography in standards, with the goal of moving the maximum number of systems off quantum-vulnerable cryptography within a decade of the publication of the initial set of standards."<BR /><BR />Purchasing of solutions is also unlocked:<BR /><BR />"Until the release of the first set of NIST standards for quantum-resistant cryptography referenced in subsection 3(a) of this memorandum, the heads of FCEB Agencies shall not procure any commercial quantum-resistant cryptographic solutions for use in IT systems supporting enterprise and mission operations."<BR /></SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN><A href="https://www.whitehouse.gov/briefing-room/statements-releases/2022/05/04/national-security-memorandum-on-promoting-united-states-leadership-in-quantum-computing-while-mitigating-risks-to-vulnerable-cryptographic-systems/" target="_blank" rel="noopener">https://www.whitehouse.gov/briefing-room/statements-releases/2022/05/04/national-security-memorandum-on-promoting-united-states-leadership-in-quantum-computing-while-mitigating-risks-to-vulnerable-cryptographic-systems/</A></SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN>Regards</SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN>Caute_Cautim</SPAN></SPAN></P> Tue, 13 Aug 2024 21:35:44 GMT Caute_cautim 2024-08-13T21:35:44Z NSM-10 US Government Notice https://community.isc2.org/t5/Industry-News/NSM-10-US-Government-Notice/m-p/73075#M7113 <P>Hi All</P><P>&nbsp;</P><P><SPAN class=""><SPAN>For US government agencies, the release of post-quantum standards triggers clauses within NSM-10.<BR /><BR />Deprecation timelines are due in 90 days:<BR /><BR />"Within 90 days of the release of the first set of NIST standards for quantum-resistant cryptography... the Secretary of Commerce, through the Director of NIST, shall release a proposed timeline for the deprecation of quantum-vulnerable cryptography in standards, with the goal of moving the maximum number of systems off quantum-vulnerable cryptography within a decade of the publication of the initial set of standards."<BR /><BR />Purchasing of solutions is also unlocked:<BR /><BR />"Until the release of the first set of NIST standards for quantum-resistant cryptography referenced in subsection 3(a) of this memorandum, the heads of FCEB Agencies shall not procure any commercial quantum-resistant cryptographic solutions for use in IT systems supporting enterprise and mission operations."<BR /></SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN><A href="https://www.whitehouse.gov/briefing-room/statements-releases/2022/05/04/national-security-memorandum-on-promoting-united-states-leadership-in-quantum-computing-while-mitigating-risks-to-vulnerable-cryptographic-systems/" target="_blank" rel="noopener">https://www.whitehouse.gov/briefing-room/statements-releases/2022/05/04/national-security-memorandum-on-promoting-united-states-leadership-in-quantum-computing-while-mitigating-risks-to-vulnerable-cryptographic-systems/</A></SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN>Regards</SPAN></SPAN></P><P>&nbsp;</P><P><SPAN class=""><SPAN>Caute_Cautim</SPAN></SPAN></P> Tue, 13 Aug 2024 21:35:44 GMT https://community.isc2.org/t5/Industry-News/NSM-10-US-Government-Notice/m-p/73075#M7113 Caute_cautim 2024-08-13T21:35:44Z