Analysis
Yes, No, No. That Is How Most Organizations Answer the Quantum Risk Test.
Key Takeaways
- Harvest Now, Decrypt Later (HNDL) means the breach occurs when traffic is captured today, not when it is decrypted years later by a quantum computer.
- Three questions determine quantum exposure: where does classical cryptography live, what is the data retention sensitivity, and how long will migration take?
- Federal Reserve research, NIST mandates, and NSM-10 all signal that quantum risk assessment is now an institutional compliance requirement, not a theoretical exercise.
An adversary copies your encrypted traffic today. Years from now, a sufficiently powerful quantum computer decrypts everything. The breach occurred in 2026. It is not discovered until 2033. This is not a theoretical scenario. Federal Reserve research published in September 2025 identifies this as an active threat model requiring immediate institutional response.
The Scenario
The attack is called Harvest Now, Decrypt Later. A state-level adversary intercepts and stores encrypted communications today, banking on future quantum computing capability to break the encryption retroactively. The data does not need to be valuable today. It needs to be valuable when it is decrypted—which could be 5, 10, or 20 years from now.
This inverts the traditional threat model. Most security programs assume that encrypted data is protected as long as the encryption holds. HNDL means the protection has a shelf life, and that shelf life is determined by quantum computing progress—something entirely outside the defender's control.
The Three-Question Test
A Forbes Technology Council article published on March 27, 2026 framed the quantum readiness question as three binary tests. Most organizations answer yes to the first, and no to the other two.
Question 1: Data Longevity
Does your organization hold data requiring confidentiality for 7 or more years? Government records, protected health information, financial transaction histories, intellectual property, and persistent personally identifiable information all qualify. If the answer is yes, your data is already inside the HNDL exposure window.
Question 2: Regulatory Exposure
Is your organization subject to CMMC, FIPS, PCI DSS, HIPAA, or NERC CIP obligations? Each of these frameworks either already references post-quantum requirements or is actively incorporating them. PCI DSS 4.0 Section 12.3.3 requires cryptographic risk assessments. CMMC 2.0 maps to NIST standards that now include PQC. Organizations subject to these frameworks face compliance pressure on a defined timeline.
Question 3: Cryptographic Inventory
Do you have a complete inventory of every cryptographic protocol, certificate, key type, and cipher suite across your entire environment? Not a sample. Not a partial scan. A complete inventory covering every application, API endpoint, database connection, VPN tunnel, IoT device, and third-party integration.
The pattern is consistent. Yes, we hold long-lived data. No, we are not tracking regulatory PQC requirements. No, we do not have a cryptographic inventory. The preparation window is open, but it is narrowing.
What Quantum Forward-Threat Validation Actually Is
A necessary clarification: current quantum computers cannot break production encryption. Anyone claiming otherwise either misunderstands the technology or is selling something. The largest RSA key factored by a quantum computer remains trivially small. No production cryptographic system is at risk from today's quantum hardware.
Quantum forward-threat validation is not an attack using a quantum computer. It is a structured evaluation of an organization's exposure to future quantum threats, comprising four components:
- Cryptographic Discovery. Systematic inventory of every algorithm, key length, protocol version, and cipher suite across the target environment. This goes beyond certificate scanning to include application-layer cryptography, database encryption, API authentication, and embedded systems.
- HNDL Exposure Modeling. For each discovered cryptographic asset, calculating the exposure window based on data retention requirements, algorithm vulnerability timeline, and adversary capability projections. The output is a per-asset risk score with a temporal dimension.
- Implementation Analysis. Evaluating the quality and maturity of existing cryptographic implementations, identifying hardcoded keys, deprecated algorithms, weak configurations, and dependencies that will complicate migration.
- Vendor Claim Validation. Testing vendor assertions of quantum-safe capability against independent benchmarks. A vendor claiming ML-KEM support does not mean the implementation is production-ready, performant, or correctly integrated.
The Regulatory Timeline
The compliance calendar is not waiting for quantum computers to arrive:
- August 2024:NIST publishes FIPS 203 (ML-KEM), FIPS 204 (ML-DSA), and FIPS 205 (SLH-DSA)—the first finalized post-quantum cryptography standards.
- September 2022: NSA releases CNSA 2.0 timeline requiring quantum-resistant algorithms for national security systems.
- 2030: NIST deprecation of 112-bit security levels, including RSA-2048 and ECDSA P-256.
- 2035: NIST complete disallowance of deprecated algorithms.
- Current: PCI DSS 4.0 Section 12.3.3 requires cryptographic risk assessments. CMMC 2.0 maps to NIST SP 800-171 which incorporates PQC guidance.
The window between “standards published” and “algorithms disallowed” is the migration window. For organizations with multi-year migration timelines, the effective start date was 2024.
What Is Happening Right Now
On March 25, 2026, Google committed to completing its post-quantum cryptography migration by 2029. Android 17 ships with ML-DSA signature verification. Chrome already defaults to ML-KEM hybrid key exchange. Google is not preparing for quantum risk—it is actively migrating. For context on Google's approach, see our earlier analysis:Google Says Prepare for Quantum. Here Is What They Left Out.
BlackRock expanded its quantum risk disclosure in its May 2025 SEC filing, explicitly identifying quantum computing as a risk to the cryptographic systems protecting $11.5 trillion in assets under management. When the world's largest asset manager discloses quantum risk to shareholders, the question of whether this is a real threat has been answered.
Where Organizations Are Exposed
The most common exposure points are not where most organizations expect:
- Legacy TLS 1.0 and 1.1—still active in internal systems, payment gateways, and legacy API integrations long after public-facing deprecation.
- Hardcoded cryptography in IoT and embedded systems—devices deployed with RSA-2048 or ECDSA keys that cannot be updated without physical access or firmware replacement.
- Sprawling certificate management—organizations with thousands of certificates across dozens of certificate authorities, many with no centralized inventory.
- Supply chain SaaS dependencies—third-party applications handling sensitive data over classical key exchange, outside the organization's migration control.
- VPN classical key exchange—site-to-site and remote access VPNs using IKEv2 with RSA or ECDH key exchange, protecting data in transit with quantum-vulnerable cryptography.
What to Do Next
The three-question test identifies the problem. The response is a four-stage process:
- Discovery.QScoutruns a 7-day cryptographic discovery assessment covering every protocol, certificate, key type, and cipher suite across your environment. The output is a complete cryptographic inventory with per-asset HNDL exposure scores.
- Validation.QStrikeruns a 4-month forward-threat engagement using provider-aligned workflows, governed evidence, and scoped hardware-backed validation when the engagement requires it.
- Migration.QSolveprovides CISO-led migration advisory, building a prioritized roadmap that accounts for dependency chains, budget constraints, and operational continuity.
- Market evaluation. TheQtonic Quantum Labscores 215 post-quantum implementations across 10 dimensions, providing evidence-based vendor selection data for migration procurement.
Sources: NIST FIPS 203, 204, 205 (Aug 2024); NIST IR 8547 (Nov 2024); NSA CNSA 2.0 (Sep 2022); Federal Reserve Bank research on quantum computing threats to financial systems (Sep 2025); PCI DSS 4.0; CMMC 2.0; Google Security Blog, “Our commitment to deploying post-quantum cryptography” (Mar 25, 2026); BlackRock Inc. 10-K SEC filing (May 2025); Forbes Technology Council (Mar 27, 2026).
Disclaimer: This article is for informational purposes only and does not constitute legal, regulatory, or technical advice. Quantum computing threat timelines are projections based on current research and are subject to change. Organizations should consult qualified advisors for compliance and migration planning.