Microsoft to Make All Products Quantum Safe by 2033
Microsoft has set out a roadmap to complete transition to PQC in all its products and services by 2033, with roll out beginning by 2029
Quantum computing could undermine widely used public-key encryption, driving research into quantum-resistant algorithms and secure migration planning.
Search across headline titles and summaries.
Background for this topic.
Quantum computing uses quantum-mechanical effects in qubits to solve some problems differently from conventional computers. In information security, its significance is primarily cryptographic: a sufficiently capable, fault-tolerant quantum computer could use Shor’s algorithm to break RSA and elliptic-curve cryptography, which protect certificates, key exchanges, signatures, and encrypted archives. Quantum computing is not expected to break all cryptography equally; symmetric encryption and cryptographic hashes generally require larger security parameters rather than replacement for the same reason.
The practical concern is “harvest now, decrypt later”: adversaries can collect encrypted traffic today for future decryption, especially when data must remain confidential for years. Organizations should inventory public-key algorithms and long-lived sensitive data, assess dependencies such as certificates and protocols, and plan migration to standardized post-quantum cryptography with crypto-agile systems. Quantum key distribution is a separate, specialized communications approach; it does not replace endpoint security, authentication, or conventional key-management controls and has significant deployment constraints.
Microsoft has set out a roadmap to complete transition to PQC in all its products and services by 2033, with roll out beginning by 2029
The goal of the Quantum-Safe Program is to ensure that by 2033, all Microsoft products and services are safe by default from quantum-based attacks.
Maximum Validity of Public TLS Certificates Will Drop From 398 Days to Just 47 DaysThe future of managing digital certificates is already here - it's just not evenly distributed yet. With the public TLS certificate validity period set to drop to just 47 days, as well as the need to migrate to quantum-safe encryption, experts see automation as key to achieving crypto agility.