France To Stop Certifying Products Without Quantum-Safe Encryption
(Tuesday June 16, 2026 @05:00PM (BeauHD)
from the quantum-era-is-upon-us dept.)
- Reference: 0183915270
- News link: https://it.slashdot.org/story/26/06/16/181236/france-to-stop-certifying-products-without-quantum-safe-encryption
- Source link:
Starting in 2027, France's cybersecurity agency ANSSI will [1]stop certifying security products that lack quantum-resistant encryption , effectively forcing government agencies and critical infrastructure operators to phase out older cryptographic systems. Reuters reports:
> Samih Souissi, ANSSI's chief of staff, said at the France Quantum conference that the agency would halt such certifications from 2027, and that businesses should be buying only quantum-safe products by 2030. ANSSI approval is required for use in French government agencies and critical infrastructure, making the policy a de facto phase-out of older encryption.
>
> "It's not only a technical issue," Souissi said. "It's a matter of governance, industrial planning, regulation, and sovereignty." The move reflects concern that attackers may store encrypted data now and unlock it later when quantum computers become strong enough to crack today's protections, a risk known as "harvest now, decrypt later."
[1] https://www.reuters.com/legal/litigation/france-stop-certifying-products-without-quantum-safe-encryption-2026-06-16/
> Samih Souissi, ANSSI's chief of staff, said at the France Quantum conference that the agency would halt such certifications from 2027, and that businesses should be buying only quantum-safe products by 2030. ANSSI approval is required for use in French government agencies and critical infrastructure, making the policy a de facto phase-out of older encryption.
>
> "It's not only a technical issue," Souissi said. "It's a matter of governance, industrial planning, regulation, and sovereignty." The move reflects concern that attackers may store encrypted data now and unlock it later when quantum computers become strong enough to crack today's protections, a risk known as "harvest now, decrypt later."
[1] https://www.reuters.com/legal/litigation/france-stop-certifying-products-without-quantum-safe-encryption-2026-06-16/
Re: They know something (Score:2)
by drinkypoo ( 153816 )
They don't know shit, some fraud convinced some policy maker that their snake oil was real
OpenSSH (Score:2)
by jmccue ( 834797 )
I wonder if OpenSSH will be acceptable. Or does this certification only apply to commercial products ? AFAIK OpenSSH would be acceptable.
https://www.openssh.org/pq.html
Really? (Score:2)
by CEC-P ( 10248912 )
They called it ANSSI? I'm sure that's not confused. Well off-brand, counterfeit, Temu ANSI here is right. If you're going to put in a product right now in 2026 with a useable life of even 5 years, it may legitimately be hackable by a quantum computer in that time. There's really no reason not to use the more modern, advanced methods. They don't even require special hardware.
Quantum Resistant Encryption (Score:2)
I had no idea what that might be, so I did some checking. I think that we can all agree that everyone should use:
CRYSTALS-Kyber encryption
and
CRYSTALS-Dilithium
Wireguard in shambles.