Post-Quantum Cryptography Transition: US Executive Order and the Evolving Q-Day Threat
Generated: 2026-07-05 · API: Gemini 2.5 Flash · Modes: Summary
Post-Quantum Cryptography Transition: US Executive Order and the Evolving Q-Day Threat
Clip title: The new post-quantum cryptography executive order. Plus: What is Q-Day, really? Author / channel: IBM Technology URL: https://www.youtube.com/watch?v=RYUR9BdDgyI
Summary
This video from IBM’s “Security Intelligence” podcast discusses the urgent need for a transition to post-quantum cryptography (PQC) due to the emerging threat posed by quantum computing. The central theme is that “Q-Day,” the point at which quantum computers can break current encryption, should not be viewed as a single event but rather as a continuous process already underway. This understanding is critical for organizations and governments to effectively prepare for the inevitable shift in cybersecurity paradigms.
Mason Molesky, IBM’s Security Policy Executive, explains that a recent U.S. Executive Order accelerates the nation’s transition to post-quantum cryptography, signaling a shift from merely recognizing the risk to mandating coordinated, government-wide action. This includes establishing clear accountability, setting accelerated timelines (moving from 2035 to 2030/2031), and updating acquisition regulations to include federal contractors. The threat is compounded by “Harvest Now, Decrypt Later” strategies, where malicious actors collect currently encrypted sensitive data (like government secrets, healthcare, or financial information) with the intent of decrypting it later using future quantum capabilities.
Suja Visweswaran, VP of Security Products at IBM, and Mark Hughes, Global Managing Partner for Cybersecurity Services at IBM, reinforce the idea of Q-Day as an ongoing process. They highlight that quantum computing, particularly Shor’s algorithm, will eventually unravel current public-key cryptography (PKI), making many existing systems vulnerable. The simultaneous rise of AI further complicates the security landscape, requiring organizations to not only secure AI implementations but also prepare for quantum-related challenges. They emphasize that the biggest bottleneck for this transition is not just technology but the people and processes involved, as everything from hardware to credentials and third-party vendor software will need to adapt.
The overarching conclusion is that organizations must pursue “crypto agility”—the ability to dynamically change and update cryptographic systems as new threats emerge and algorithms evolve, much like regular software updates. This requires a fundamental, ground-up transformation rather than a one-time project. Key takeaways for organizations include initiating high-level conversations about quantum risk, undertaking a thorough “discovery” process to identify all cryptographic artifacts across their IT ecosystem and supply chain, and then engaging in a continuous cycle of strategizing, assessing, modernizing, governing, and remediating. While quantum computing presents significant security challenges, it also offers immense opportunities in fields like finance, natural sciences, and healthcare, making proactive preparation an exciting and necessary endeavor.
Video Description & Links
Description
Learn more about Q-Day → https://ibm.biz/~Ki7XKK3qT
On June 22, US President Donald Trump signed a pair of executive orders for the quantum computing, and post-quantum future.
On this episode, Mason Molesky breaks down the post-quantum EOs: “Securing the Nation Against Advanced Cryptographic Attack,” which establishes a government‑wide mandate to accelerate the United States’ transition to post‑quantum cryptography. Mason covers what it is, why you should care and what you should do.
Then: Suja Visewesan and Mark Hughes join host Matt Kosinski to discuss Q-Day, the anticipated future day when quantum computing will become “cryptographically relevant” — or put another way: powerful, reliable and accessible enough to make our current approach to public key cryptography obsolete.
But what if Q-Day isn’t a day at all? What if it’s a process—a long, slow evolution rather than a sudden leap? And what if it’s already happening right now, under our noses?
We chat about the risks—and benefits!—of quantum computing to cybersecurity, the reality of and post-quantum cryptography and how organizations can become “crypto-agile” to keep up with the rapid pace of change.
All that and more on Security Intelligence.
00:00 – Introduction 01:23 – Post-quantum cryptography executive order 13:30 – What is Q-Day?
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Read Suja and Mark’s article → https://ibm.biz/~kyq7lK8EH #quantumcomputing cryptography quantumsafe
Tags
IBM, IBM Cloud