Modern quantum research began around 100 years ago, sparking a scientific revolution that is becoming increasingly relevant to security today. What was once an abstract theory is now becoming a practical reality: quantum computers with ever-improving performance capabilities are set to challenge the foundations of today’s cryptography, with significant consequences for companies, public authorities and IT infrastructures.
Recent advances by leading companies such as IBM and IonQ demonstrate that functional quantum computers with stable qubits are no longer just a vision for the distant future. Experts now expect central cryptographic methods such as RSA or ECC to be compromised by 2030, which is significantly earlier than previously anticipated. Of particular concern is that even data encrypted, archived or stored today is potentially at risk. Attackers could collect it now in order to decrypt it later using quantum computers (‘harvest now, decrypt later’).
The technical solution to this problem is post-quantum cryptography (PQC): cryptographic methods that remain secure even against quantum-based attacks. International bodies such as NIST are working on standardising appropriate algorithms, and the first candidates have already been selected. However, the transition is proving complex: the new methods are not equally suitable for all applications, and integrating them into existing systems is costly and requires extensive adjustments. Added to this are uncertainties regarding regulatory requirements, technical feasibility and long-term stability. PQC is therefore a vital, yet not sole, component of tomorrow’s security strategy.
This is where cryptoagility comes in. This concept describes the ability of systems to exchange cryptographic components flexibly and in a future-proof manner, without the need for fundamental restructuring. The aim is to design IT architectures so that new procedures, protocols or key mechanisms can be swiftly incorporated as and when necessary or available. Cryptoagility thus creates the foundation for a security infrastructure that is resilient enough to withstand not only today’s threats, but also those of the future.
Cryptoagile architectures enable a rapid response to new developments, such as the parallel support of classic and post-quantum-resistant procedures. They reduce dependencies on individual solutions, facilitate technological transitions and help meet ongoing regulatory requirements. This makes cryptoagility a strategic tool for digital resilience.
This topic will also be the focus of the eco Internet Security Days 2025. In a separate panel, experts from academia and industry will discuss how far development has progressed, when concrete security risks arise and how companies can prepare for them. The role of post-quantum methods and the implementation of cryptoagility in technical and organisational structures will also be explored in depth.
Other highlights of ISD 2025 will range from cyber resilience and the protection of critical infrastructures to current regulatory developments at the national and European levels.
More about the event:
eco.de/events/internet-security-days-2025
