France to Stop Certifying Non
France to Stop Certifying Non-Quantum-Safe Encryption
France is accelerating its transition to post-quantum encryption:
Franceâs cybersecurity agency ANSSI said on Tuesday it would stop certifying security products that lack quantum-resistant encryption, a move that will force government bodies and critical operators to shift away from older systems.
Samih Souissi, ANSSIâs chief of staff, said at the France Quantum conference that the agency would halt such certifications from 2027, and that businesses should be buying only quantum-safe products by 2030.
ANSSI approval is required for use in French government agencies and critical infrastructure, making the policy a de facto phase-out of older encryption.
Clive Robinson ⢠July 6, 2026 12:09 PM
@ ALL,
This,
Does not realy give an indicator of just how fast the chang required or the effect it will have.
ANSSI dictating from above
What is in effect a deadline of âat the end of the decadeâ when we are already more than halfway through. Some would argue is,
âWay to fast for what in practice is an unknown, at best minimally tested technologyâ.
Especially when the alleged âQuantum Computerâ threat keeps slipping further and further into the future.
Thus the question arises as to,
âWhy the rush, and what the parachute is?â
After all you do not fly experimental aircraft without having some form of protection from âcrash and burnâ.
If you are going to create a massive economic upheaval itâs something you need to consider the consequences of.
Just one thing that few talk about is âSovereign Securityâ. Itâs all the rage currently to talk about the EU plans to get rid of US Cloud as itâs a clear and present security risk. But few consider the effect across âthe full computing stackâ.
Presently the cloud world runs on US controlled hardwareâŚ
France does not have the Sovereign Secure production to meet this ANSSI plan.
Which means both the US and China will be âbuilt in at the bottom of the computing stack for these Quantum Safe encryption systemsâŚ
But speaking of hardware, people need to seriously think about the threat model of QC.
The current argument is that all comms will be hovered up and kept then when QC becomes practical it will all be âbrokenâ (with the implication of âover nightâ).
Simple logic and the exponential rise of communications tells you this is not going to happen. Before you even chuck in the economic cost of building Data Centers full of Quantum Computers and all thatâs involved with that.
Itâs also fate that is fairly easy to avoid using pre-encryption or super-encryption depending on which way you look at things. Further you need to ask the question,
Where would QCâs be most advantageous at breaking, that is where would the âexponentialâ speed up be?
The answer is âKey Negotiation / Delivery / Distributionâ which is actually not a problem that existed untill the 1980âs and the advent of what would become e-shopping On-Line.
Pre-E-Commerce encryption practices are still QC proof. Thus there are two types of encryption, E-Commerce style between random entities, and traditional between established relationship entities.
After a moments thought you realise that the real âlong termâ security concerns are between entities that can use Pre-E-Commerce style systems.
Thus basic engineering would make secure systems for established entities.
But getting back to Quantum Computers the promise is âexponential speed upâ⌠Can that actually be delivered by Quantum Computing?
The answer in most cases is ânoâ whilst we might have QC Hardware, we will still need QC Algorithms to get that exponential speed up. And such algorithms are actually at best very thin on the ground. You can see a basic explanation of this in
âhttps://m.youtube.com/watch?v=pDj1QhPOVBo
The thing to remember is,
âThere is a lot of difference between âtheoretical and practicalâ.â
Whilst an algorithm can be designed in theory⌠it is in effect useless untill it can be adapted to run on available hardwareâŚ
So the question is,
âWhy is ANSSI jumping into something with time frames that will give the opposite of Sovereign Security?â
How it works
Once you click Generate, Ollama reads this article and crafts 5 comprehension questions. Your answers are graded against the article content â general knowledge won't be enough. Score 70+ to count toward your certificate.
Questions are cached â you'll always get the same 5 for this article.