🟡 Medium | Source: The Hacker News
President Trump has signed Executive Order 14409, mandating that US federal agencies migrate high-value systems to post-quantum cryptography by 31 December 2030, with digital signatures following by end of 2031. The order responds to the ‘harvest now, decrypt later’ threat, where adversaries collect encrypted data today intending to decrypt it once sufficiently capable quantum computers exist. National security systems are handled under a separate track.
Security Architect’s Take: Begin a cryptographic inventory now to identify where RSA and elliptic-curve algorithms are in use across your cloud workloads and APIs; even if your organisation is not a federal agency, supply-chain relationships with US government customers may impose indirect compliance obligations, and NIST PQC standards (ML-KEM, ML-DSA) are already published and available for adoption.
Original advisory: Trump Order Sets 2030 Deadline for Federal Post-Quantum Crypto Migration