🌐 General Internet Security The stuff that keeps your browsing "private"

RSA-1024

0 Days

Legacy TLS, embedded devices 💀

Still lurking in: Old websites, VPNs, IoT devices

RSA-2048

0 Days

Most of the internet 🔥

Powers: HTTPS, banks, email, Windows code signing

ECC-256

0 Days

Your "secure" messaging 📱

Used by: iMessage, Signal, WhatsApp, Tor

AES-128

0 Days

Wi-Fi & ZIP files 📶

Protects: WPA2, encrypted archives

AES-256

0 Days

Government secrets 🏛️

Secures: NSA Suite B, Apple Secure Enclave

SHA-256

0 Days

Digital fingerprints 🔍

Verifies: Git commits, SSL certs, file integrity

₿ Cryptocurrency Security Where "HODL" meets "Oh no, my coins!" 📉

ECDSA Wallets

0 Days

Your Bitcoin signatures 🔐

At risk: MetaMask, Trezor, Ledger, Coldcard

EdDSA Wallets

0 Days

Alt-coin signatures 🪙

Used by: Some Trezor/Ledger coins

Keccak-256

0 Days

Ethereum addresses 🔷

Powers: ETH addresses, smart contracts

⚠️ Wallet Reality Check

All major crypto wallets encrypt private keys with AES-256, which buys you some extra time. But once signatures are broken, having "encrypted" private keys is like having a really secure door... that you left wide open. 🚪💸

🍷 Harvest Now, Decrypt Later

"Harvest now, decrypt later" is the cyberattack equivalent of buying wine to age in your cellar 🍷 - except instead of wine, hackers are hoarding encrypted data they can't crack yet. The strategy? Record today's "secure" communications knowing that quantum computers will eventually let them pop the cork on all those juicy secrets. Your bank transactions, government cables, corporate secrets - it's all getting archived for future decryption. For crypto? Attackers are already collecting blockchain transactions to reverse-engineer private keys later 💰. Those Bitcoin wallets sitting untouched? Their owners thought they were playing the long game. Plot twist: so were the hackers.

What is Q Day?

Q Day is when quantum computers get smart enough to crack the encryption protecting your banking, messaging, crypto wallet, and government secrets. Experts used to say "don't worry, it's decades away!" Then 2040 became 2035. Now? RSA-1024 could break as early as 2028. At this rate, your passwords might expire before your milk.

📅 These estimates are based on:

Current quantum computing research progress
Algorithm capabilities
Quantum computing company's published roadmaps
Industry expert predictions
For Q Day, we have selected June 10th in each year, and then calculate the number of days between today and that date in a given year.

Who's Prepared

While Q Day looms, some tech giants aren't waiting around. Here's who's already implementing post-quantum cryptography (PQC):

🛡️

Google

✅ PQC Implementation

Google integrated Kyber (CRYSTALS-Kyber), a lattice-based key encapsulation mechanism, into Chrome 116+ as part of a hybrid post-quantum TLS experiment. Uses both classical and quantum-safe algorithms for forward secrecy.

📦 Used In:

Chrome (HTTPS connections)
Google Cloud experiments
QUIC protocol (in testing)

🔗 Reference: Google Security Blog (Aug 2023)

🍎

Apple

✅ PQC Implementation

With iMessage PQ3, Apple introduced hybrid post-quantum encryption using Kyber for forward secrecy and quantum resistance. Implemented in iOS 17.4, macOS 14.4, and newer. One of the first major consumer-facing deployments of PQC at scale.

📦 Used In:

iMessage (end-to-end encryption)
Applies to new devices and conversations only

🔗 Reference: Apple Security Research Blog (Feb 2024)

☁️

Cloudflare

✅ PQC Implementation

Rolled out post-quantum TLS support for all Cloudflare customers. Supports Kyber + X25519 hybrid key exchange. Open-sourced tools and hosted test sites for PQC interoperability.

📦 Used In:

CDN and TLS termination
Developer tools for secure key exchange

🔗 Reference: Cloudflare PQC Announcement (July 2023)
PQC Interop Test Site

🖥️

Microsoft

✅ PQC Implementation

Released Post-Quantum TLS (PQ-TLS) support for Windows 11 Insider builds. Built PQC support into MS QUIC protocol and Azure Key Vault experiments. Advocates for hybrid modes using classical + Kyber key exchanges.

📦 Used In:

Windows TLS stack (early builds)
Microsoft Edge PQ experiments
Azure infrastructure (pilot phase)

🔗 Reference: Microsoft PQC Blog (July 2023)

🌐

Amazon Web Services (AWS)

✅ PQC Implementation

Added PQC support for TLS connections to AWS KMS and CloudHSM. Integrates Kyber (hybrid with classical crypto). Provided tools for customers to test PQ-TLS via S2N-TLS library.

📦 Used In:

Key management systems
TLS APIs for cloud services

🔗 Reference: AWS Security Blog (June 2023)

Solution Providers

Companies leading the quantum-safe transition with practical solutions available today:

🛰

ID Quantique (IDQ)

📍 Geneva, Switzerland

🛡️ Focus:

Quantum Key Distribution (QKD) systems
Quantum random number generators (QRNG)
Quantum-safe networks for governments, banks, and data centers

🚀 Highlights:

Partnered with SK Telecom and Samsung for quantum-secure mobile and 5G
Deployed QKD links in Europe, Korea, and the Middle East
Integrated into Thales and BT quantum security stacks

🔗 Reference: idquantique.com

🛠

Toshiba Europe

📍 Cambridge, UK

🛡️ Focus:

Quantum Key Distribution (QKD)
Quantum-safe metro-area networks
Hybrid cryptographic infrastructure

🚀 Highlights:

Deployed QKD testbed with BT in the UK
Achieved long-distance QKD over 600 km fiber
Commercializing multiplexed QKD chip technology

🔗 Reference: quantum.toshiba.co.uk

🌐

QuSecure

📍 San Mateo, California, USA

🛡️ Focus:

Post-quantum secure communication stack (QuProtect)
Quantum-safe VPNs and messaging
Quantum resilience for federal and enterprise networks

🚀 Highlights:

Won U.S. Air Force and DoD contracts for quantum-safe software
Hybrid cryptographic key exchange protocols (PQC + classical fallback)
Active in U.S. critical infrastructure protection

🔗 Reference: qusecure.com

🔒

QuintessenceLabs

📍 Canberra, Australia

🛡️ Focus:

Quantum entropy as a service (QRNG)
PQC + QKD hybrid solutions
Integration into Thales HSMs and security modules

🚀 Highlights:

Winner of Australian defense and intelligence contracts
Leading role in standardizing quantum entropy for secure systems

🔗 Reference: quintessencelabs.com

🚀

Aliro Quantum

📍 Boston, Massachusetts, USA

🛡️ Focus:

Quantum network orchestration and simulation
Enabling quantum internet infrastructure
Software-defined QKD network design

🚀 Highlights:

Partnering with DARPA, Air Force, and private telecoms
Developed AliroNet platform for designing entanglement-based networks
Leading the way in quantum repeater simulation and validation

🔗 Reference: aliroquantum.com

🔑

BTQ Technologies Corp.

📍 Vancouver, Canada & Taipei, Taiwan

🛡️ Focus:

Post-Quantum Cryptography (PQC) software and hardware solutions
Quantum-safe blockchain infrastructure
Quantum-safe VPNs and secure communications

🚀 Highlights:

Developing PQScale, a PQC library for blockchain and enterprise applications
Building crypto-agile security solutions for seamless PQC integration
Partnering with blockchain projects and enterprises to enable quantum-resistant transaction signing and key management

🔗 Reference: btq.com

Global Regulatory Tracker

Government mandates and compliance deadlines for post-quantum cryptography migration by jurisdiction:

🇺🇸

United States (NIST - Civilian)

NIST, OMB

2035 Target

Key Dates:

Aug 2024 NIST released first 3 PQC standards (FIPS 203, 204, 205)

2030 112-bit classical public-key deprecated

2035 112-bit classical public-key disallowed

Requirements:

Federal agencies must begin transition planning now
OMB developing agency migration guidance
Quantum Computing Cybersecurity Preparedness Act compliance

🔗 Reference: NIST Post-Quantum FIPS Standards

🇺🇸

United States (NSA - National Security)

NSA, DoD

2031 Target

Key Dates:

Dec 2030 CNSA 2.0 algorithms phase-out deadline for NSS

Dec 2031 CNSA 2.0 mandate effective for all National Security Systems

Requirements:

National Security Systems priority implementation
Commercial Solutions for Classified (CSfC) program guidance
Hybrid approaches during transition period

🔗 Reference: NSA CNSA 2.0 FAQ

🇪🇺

European Union

ENISA, European Commission

2030 Target

Key Dates:

Apr 2024 EU Recommendation on PQC published

End 2026 Member States must start PQC transition

End 2030 Critical infrastructures transitioned to PQC

Requirements:

Critical infrastructures transition "as soon as possible"
Member States implement synchronised approach
NIS Cooperation Group coordination mandatory

🔗 Reference: EU Post-Quantum Cybersecurity Reinforcement

🇬🇧

United Kingdom

NCSC

2035 Target

Key Dates:

2028 Cryptographic discovery and migration strategy complete

2031 High-priority PQC upgrades finished

2035 Full replacement of traditional public-key cryptography

Requirements:

Organizations must issue formal PQC migration statements
Asset discovery and PKI strategy development immediate
Critical infrastructure prioritization

🔗 Reference: Official NCSC PQC Whitepaper

🇯🇵

Japan

CRYPTREC, NISC, NICT

Guidance-Led

Key Dates:

2024 CRYPTREC PQC guidelines published

Ongoing Technical reports and evaluation activities

TBD Guidance-led approach, no firm mandates

Requirements:

CRYPTREC evaluation of international PQC standards
Government agencies coordination via quantum networks
Industry collaboration on research and development

🔗 Reference: CRYPTREC 2024 PQC Guidelines

🇰🇷

South Korea

KISA, Ministry of National Defense

Timeline TBD

Key Dates:

2024 Master plan action items completion target

TBD Implementation timeline under development

Requirements:

National cryptography transformation commission
8 candidate algorithms selected for standards
Cross-agency working group coordination

🔗 Reference: Official KISA Portal

🇦🇺

Australia

ASD, ACSC

2030 Target

Key Dates:

2030 Diffie-Hellman not approved beyond 2030

2030 AES-128/192 not approved beyond 2030 (interoperability)

By 2030 PQC support recommended for implementation

Requirements:

AES-256 preferred over AES-128/192 for future compatibility
ISM cryptography guidelines mandate compliance
Continuous monitoring of international PQC developments

🔗 Reference: ISM Cryptography Guidelines

🇨🇦

Canada

CSE, Canadian Centre for Cyber Security

2035 Target

Key Dates:

Jun 2025 Strategy becomes effective

Apr 2026 Initial PQC migration plans due

2031 High-priority systems migration complete

2035 All remaining systems transitioned

Requirements:

Departmental PQC executive leads appointed
Annual progress reporting mandatory
CMVP validation required for all PQC products

🔗 Reference: Official CSE Migration Roadmap

🇨🇳

China

Ministry of State Security, MIIT, CNCERT

2030 Target

Key Dates:

2023 National standards for quantum cryptography published

2025 Critical infrastructure PQC deployment begins

2030 State-owned enterprises full PQC transition

Requirements:

State-owned enterprises must prioritize quantum-safe systems
National quantum communication backbone deployment
Indigenous PQC algorithms preferred for critical systems

🔗 Reference: Official MIIT Portal (English)