Quantum computing promises unprecedented computing power, but at the same time puts the foundations of digital security under pressure. What is considered robust encryption today may prove vulnerable tomorrow. As a result, post-quantum cryptography is rapidly moving up the agenda of organizations. It is a theme that will take center stage during Cybersec Europe on May 20 and 21.
According to Sarah Ampe, Manager Digital Risk at EY Advisory, the impact of quantum computing is anything but theoretical. “The cryptographic systems we rely on today, such as RSA and ECC, are based on mathematical problems that quantum algorithms can solve relatively easily,” she explains. “This means that the digital trust we currently take for granted could disappear almost overnight.”
No longer a distant future
This shift makes post-quantum cryptography (PQC) not a distant prospect, but an urgent necessity. Governments, technology companies, and standardization bodies are already preparing for the transition, but its implementation proves complex. “Organizations need to start planning now,” says Ampe. “The migration to quantum-safe standards does not happen in a single step. Hybrid models, risk analyses, and clear timelines are essential.”
An additional challenge lies in the lack of visibility into organizations’ own cryptographic environments. Many companies do not sufficiently know where and how encryption is applied. “That becomes problematic now that the rules in this domain are changing. Until recently, public TLS certificates typically had a validity of about one year, but in the future that will drop to just 47 days.”
Automation and agility as key
Beyond visibility, the way security is managed is also being fundamentally redesigned. “Automation and agility will become crucial,” Ampe emphasizes. “Manual processes are not scalable in an environment where certificates must be renewed every few weeks and cryptographic components are constantly evolving.”
The challenge therefore lies not only in new technology, but mainly in organizations’ ability to adapt quickly. “The real challenge is not the cryptography, but understanding your own environment,” she states. This requires a structured approach in which visibility, governance, and flexibility are central.
Sarah Ampe, who was named Young Cyber Security Professional of the Year by the Cybersecurity Coalition, will deliver a practical keynote in the Tech Theater on May 21 for those who want to understand how significant the impact of quantum computing on cybersecurity will be, and which decisions already need to be made today.
Sarah Ampe speaks on Thursday, May 21 at 12:15 in the Tech Theater at Cybersec Europe.
