Open in app

Sign in

Write

Sign in

NCSC Guidelines on PQC

Prof Bill Buchanan OBE FRSE
2 min readMar 20, 2025

Today, the NCSC published a document on key milestones on the migration towards Post Quantum Cryptography (PQC) [here]:

We can see that organisations have three years to perform a full assessment and setup a plan for their mitigation, and then by 2031, carry out the migration. And, as NIST define, that all existing vulnerable cryptography will be removed by 2025. Overall, the key elements at risk are key exchange (ECDH), public key encryption (RSA OAEP) and digital signatures (RSA PSS, ECDSA, and EdDSA), along with 128-bit AES and 128-bit and 160-bit hashing. Overall, public key encryption and public key encryption will be replaced by ML-KEM (FIPS 203), and digital signatures by ML-DSA (FIPS 204) and SLH-DSA (FIPS 205).

You can find out more about these methods here:

Post quantum cryptography (PQC)

As if you didn't know, quantum computers will put an end to our most popular public-key methods. And so NIST has been…

asecuritysite.com

Cybersecurity
Cryptography

--

--

Prof Bill Buchanan OBE FRSE
Prof Bill Buchanan OBE FRSE

Written by Prof Bill Buchanan OBE FRSE

34K Followers
39 Following

Professor of Cryptography. Serial innovator. Believer in fairness, justice & freedom. Based in Edinburgh. Old World Breaker. New World Creator. Building trust.

No responses yet

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech