Enterprises Remain Underprepared for Ascending Quantum Risks, According to Keyfactor Research
The Quantum Threat: Are You Ready?
In the digital age, cryptography plays a crucial role in safeguarding data, systems, and trust. However, this very foundation is under threat due to the looming spectre of quantum computing. A new report from Keyfactor, titled the Digital Trust Digest: The Quantum Readiness Edition, offers practical steps and expert insights for organizations to address post-quantum cryptography (PQC) readiness.
The report reveals that nearly half of enterprises (48%) are unprepared for the quantum cybersecurity threat. Organizations that view PQC as a significant, strategic priority are over twice as likely to be taking proactive steps compared to those minimizing the risk. Early acknowledgment of the issue is critical to future-proofing infrastructure and gaining a competitive security advantage.
Effective preparation requires a comprehensive understanding of an organization's cryptographic assets. This includes certificates, keys, and even shadow or unauthorized assets. Auditing is not a one-time process but a continuous one, leveraging automated discovery and monitoring to maintain crypto-agility and reduce risk exposure as PQC emerges. Automation is essential because manual methods are too slow and error-prone at scale.
Crypto-agility—the ability to quickly switch cryptographic algorithms and update systems—is becoming a vital business differentiator. Moving towards PQC-ready infrastructure demands governance, visibility, and resourcing improvements to support agile cryptographic transitions.
Organizations must also stay aligned with emerging standards and mandates. Federal agencies and regulators have defined PQC guidance and timelines, with upgrades expected by 2030 for high-risk systems. Companies need to track these requirements and integrate them into their security roadmaps.
The report also emphasizes the need for immediate action. Cryptographically relevant quantum computers could emerge within the next decade, putting today’s encryption at risk. Businesses delaying preparation will face increased vulnerabilities and compliance risks. Those investing resources in PQC readiness today will enhance long-term resilience, digital trust, and security leadership.
Key benefits of PQC readiness include stronger cybersecurity, enhanced customer trust, reduced cyber insurance premiums, and a competitive edge. Mid-sized organizations, in particular, are vulnerable, with 56% saying they are not ready. Companies that recognize the scale of the quantum threat gain a decisive advantage in future-proofing their infrastructure.
In summary, the Keyfactor experts recommend organizations internalize the PQC threat, automate and continuously audit cryptographic assets, foster crypto-agility, heed regulatory developments, and begin PQC transitions immediately to stay ahead of the quantum threat landscape. The shift to PQC is not just an option—it's a necessity for organizations that wish to maintain their digital trust and security leadership in the face of the quantum computing challenge.
[1] Keyfactor, Digital Trust Digest: The Quantum Readiness Edition, conducted in partnership with Wakefield Research.
- To future-proof their infrastructure and maintain digital trust in the era of quantum computing, organizations must prioritize embracing post-quantum cryptography (PQC), as highlighted in the Keyfactor report, "Digital Trust Digest: The Quantum Readiness Edition."
- The reluctance of many businesses to address the quantum cybersecurity threat could leave them exposed to increased vulnerabilities and non-compliance risks, as well-prepared competitors gain a competitive advantage when quantum computing emerges.
