Announcements
This ISC2 Community will be decommissioned as of May 29, 2026. Please join your peers and connect with your chapter at https://isc2chapters.isc2.org.
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion
‎02-14-2026 10:30 PM
‎02-14-2026 10:30 PM

Enterprise PQC Migration: New Study Predicts 5–15+ Year Timelines

Hi All

 

27 Dec 2025 – A new peer-reviewed study titled “Enterprise Migration to Post-Quantum Cryptography: Timeline Analysis and Strategic Frameworks” by independent researcher Robert Campbell has been published in the open-access journal Computers (MDPI).

 

This paper provides one of the most comprehensive analyses to date of how long it will take enterprises to fully migrate their cryptographic systems to post-quantum cryptography (PQC). The findings are striking, and very much aligned with what I’ve been saying for years: even under optimistic assumptions, small enterprises may need 5-7 years to complete the transition, medium enterprises 8-12 years, and large enterprises 12-15+ years.

 

Australia:  2030 deadline mandated

Rest of the world:  2035 

 

These timelines far exceed many early expectations and underscore that the PQC migration is not a simple software update but a complex, multi-year transformation. The study situates these estimates in context – tying the migration challenge to broader strategic issues like Zero Trust architecture, crypto-agility, and the looming threat of quantum-enabled adversaries – and offers a sobering call to action for organizations to start preparing now.

 

https://postquantum.com/security-pqc/enterprise-pqc-migration-study/

 

So everyone buckle up and expect that HNDL and HNFL (Hack Now Forge Later) attacks are already happening today.  So if you have any data which must remain confidential for at least five years, think about migrating to to the published Post Quantum Cryptography algorithms now.

 

Regards

 

Caute_Cautim

Reply
1 Reply
dcontesti
Community Champion
‎02-14-2026 10:54 PM
‎02-14-2026 10:54 PM

Thanks for the great read, missed this one.

 

d

 

Reply