France's ANSSI to Stop Certifying Non-Quantum-Safe Encryption

A sharp French policy signal on quantum-safe encryption — international PQC migration accelerates this week.

Share

Key Takeaways

  • France's cybersecurity authority — ANSSI, the Agence nationale de la sécurité des systèmes d'information — announced that it will stop certifying encryption products that are not quantum-safe, signaling a hard pivot toward post-quantum cryptography (PQC) for products it evaluates.
  • The move is a defender-side policy signal rather than a response to any single incident: it is designed to push vendors and buyers away from encryption that a future cryptographically relevant quantum computer could break, and toward algorithms built to resist that threat.
  • The announcement lands as one more marker in an accelerating international PQC migration thread that already includes the US executive order setting a 2030 post-quantum deadline and Microsoft's quantum-safe transition guidance for enterprises.

France's cybersecurity authority says it will stop certifying non-quantum-safe encryption — a defender-framed policy signal that raises the floor for products it evaluates and sharpens the international PQC migration.

PARIS — France's national cybersecurity authority, ANSSI, has announced that it will stop certifying encryption products that are not quantum-safe, a policy signal that raises the cryptographic floor for the products it evaluates and adds momentum to an already-accelerating international migration to post-quantum cryptography. The announcement, surfaced in early July 2026 and highlighted by cryptographer Bruce Schneier, frames the change as a forward-looking defensive posture rather than a reaction to any active compromise: encryption that cannot withstand a future quantum computer is, in this reading, encryption that should no longer earn a government seal of approval.

The reasoning is the one that has organized the entire post-quantum debate. A sufficiently powerful quantum computer would be able to break the public-key cryptography that secures much of today's internet traffic, stored data, and digital signatures. Even though such a machine does not yet exist in a practically threatening form, the risk is not purely hypothetical: adversaries can capture and store encrypted data now in the expectation of decrypting it later, once the capability arrives. As Bruce Schneier noted in flagging the announcement, a certification authority declining to bless non-quantum-safe products is a concrete way to move an entire market forward rather than waiting for the threat to become acute. It also slots directly into a run of 2026 policy moves — from Washington to Redmond — that have turned PQC migration from a research topic into a procurement and compliance question.

At a Glance
FieldDetails
AuthorityANSSI — France's national cybersecurity authority (Agence nationale de la sécurité des systèmes d'information)
WhatPlan to stop certifying encryption products that are not quantum-safe
FramingDefender-side policy signal; not tied to a specific breach or incident
GoalPush vendors and buyers toward post-quantum cryptography (PQC) ahead of a future quantum threat
Threat model"Harvest now, decrypt later" plus eventual quantum break of classical public-key crypto
Wider contextPart of an international PQC thread including the US 2030 executive-order deadline and Microsoft's quantum-safe guidance
SpecificsExact certification scheme, transition deadline, and scope not fully confirmed at time of writing
StatusAnnounced policy direction; implementation details to follow

What France's Cybersecurity Authority Announced

The core of the announcement is straightforward, even if the fine print is not yet fully public: France's cybersecurity authority, ANSSI, intends to stop certifying encryption products that are not quantum-safe. The item was brought to wide attention when cryptographer Bruce Schneier flagged it on his blog under the heading "France to Stop Certifying Non-Quantum-Safe Encryption." The framing is deliberately defender-side. This is not the disclosure of a break in existing cryptography, nor a reaction to an incident; it is a regulator using the one lever it controls — certification — to steer a market toward algorithms designed to resist a quantum-capable adversary.

For organizations that pay attention to government cryptographic certification, that lever matters. Certification and qualification by a national authority function as a trust signal that flows into procurement decisions, especially in government, critical infrastructure, and regulated sectors. Withholding that signal from products that rely on classical, quantum-vulnerable public-key cryptography effectively tells the market that the older approach is on borrowed time. The message to vendors is to build post-quantum cryptography (PQC) support into their roadmaps if they want to remain certifiable; the message to buyers is that quantum-safe capability is moving from a nice-to-have to a baseline expectation.

It is worth being precise about what is confirmed and what is not. The direction of travel — ANSSI moving to stop certifying non-quantum-safe encryption — is clear. The specific certification or qualification scheme affected, the exact transition deadline, and the precise scope of covered products are details that are not fully confirmed at the time of writing and, in keeping with The CyberSignal's practice, are treated below as open questions rather than asserted facts. What is unambiguous is the signal itself: a major European cybersecurity authority is publicly putting its certification weight behind the migration to post-quantum cryptography.

A New Marker in the International PQC Migration Thread

The French move does not stand alone. It reads as the latest entry in an international post-quantum migration thread that has picked up sharply through 2026. The most prominent government marker so far this year was the US executive order setting a 2030 post-quantum cryptography deadline, which put a hard date on the federal government's transition and, by extension, pressured the vendors that serve it. ANSSI's certification pivot is the European complement to that timeline: where the US order works through executive mandate, France works through the certification gate that products must pass to be trusted in sensitive deployments. Both point the same direction, and both raise the cost of standing still.

The private sector has been moving in parallel. Microsoft's guidance on accelerating a quantum-safe timeline translated the same threat model into enterprise-migration terms, urging organizations to inventory their cryptography and begin the transition well ahead of any hard cutoff. The through-line across all three — Washington's deadline, Redmond's roadmap, and now Paris's certification posture — is that the practical work of PQC migration is being pulled forward by policy and procurement rather than by the arrival of a quantum computer. Vendor efforts to open-source post-quantum implementations, such as Apple's move to release its CoreCrypto post-quantum work, sit downstream of exactly this pressure: as certifiers and mandates demand quantum-safe primitives, the ecosystem races to make robust, reviewable implementations widely available.

For EU-adjacent organizations, the implementation implications are concrete even before the fine print lands. Any vendor that sells into French government or critical-infrastructure buyers, or that treats ANSSI certification as a competitive credential, now has a strong reason to move PQC support up its roadmap. Multinationals that already face the US 2030 deadline can no longer treat post-quantum readiness as a US-only compliance track; a European certification authority signaling the same direction means the migration is becoming a transatlantic baseline rather than a regional quirk. The prudent planning assumption is that quantum-safe capability will be a certification and purchasing prerequisite across major markets within the next few years, and that cryptographic inventory — knowing where classical public-key crypto lives in your estate — is the first, deadline-agnostic step.

The open question the French move sharpens is how the rest of Europe responds. ENISA, the EU's cybersecurity agency, has an obvious coordinating role if member-state authorities are to align on timelines, covered product classes, and mutual recognition of quantum-safe certifications; whether and how it moves to harmonize with ANSSI's posture cannot be asserted here, and it belongs in the open-questions column. The same is true of other national authorities: France setting a certification marker may encourage peers to follow, but that is a plausible trajectory, not a confirmed one.

Scope and Impact

The direct impact is bounded by what certification actually gates. ANSSI certification and qualification matter most for products destined for French public-sector, defense, and critical-infrastructure use, and for vendors that treat French approval as a mark of assurance elsewhere. For those audiences, declining to certify non-quantum-safe encryption makes PQC support a condition of remaining in the trusted-product pool over time — a meaningful lever precisely because it operates at the point of purchase, not merely as guidance.

The broader impact is signaling. Markets read certification-authority behavior as a forecast of where requirements are heading, and a national authority publicly refusing to bless quantum-vulnerable encryption is a strong forecast. The likely second-order effects are already visible in the wider PQC thread: vendors accelerating post-quantum roadmaps, buyers adding quantum-safe language to procurement, and implementations maturing under the pressure. For organizations outside France, the impact is less about immediate compliance and more about direction-setting.

That said, the limits matter. Without the confirmed scheme, deadline, and scope, the announcement is best read as a firm statement of direction whose precise operational consequences will depend on details still to be published.

Open Questions

Several specifics remain unconfirmed at the time of writing, and it would be wrong to assert them. The exact ANSSI certification or qualification scheme affected by the change has not been definitively established here, nor has the precise transition deadline after which non-quantum-safe products would no longer be certified. The full scope of covered products — which categories of encryption or security products fall under the policy, and how transitional cases are handled — is likewise not confirmed.

The European coordination picture is another open question. Whether other EU member states will follow France's lead with comparable certification postures, and how ENISA might align or harmonize any EU-level approach, cannot be stated as fact on the basis of this announcement. Those are plausible directions given the shared threat model and the existing international thread, but they remain projections rather than confirmed commitments.

Finally, the sourcing at this stage rests substantially on the announcement as surfaced and contextualized by Bruce Schneier, with the underlying move attributed to France's cybersecurity authority. That is a solid basis for the core claim — that ANSSI intends to stop certifying non-quantum-safe encryption — but the operational details will come into focus as the authority publishes specifics. Readers and planners should treat the direction as established and the fine print as forthcoming.


The CyberSignal Analysis

The reported facts above are as announced by France's cybersecurity authority and surfaced by Bruce Schneier; what follows is The CyberSignal's editorial reading of what defenders should take from them. None of the judgments below are new reported facts.

Signal 01 — Certification Is the Quiet Lever That Moves Whole Markets

The most durable takeaway is not the specific French policy but the mechanism behind it. A national authority does not need to ban weak cryptography to retire it; it only needs to stop certifying it. Certification and qualification feed directly into procurement, so withdrawing approval from quantum-vulnerable products steers buyers and vendors without a single mandate to a private company. Our reading is that certification gates are becoming one of the most effective policy instruments in the PQC transition precisely because they act at the point of purchase.

For security and procurement teams, the actionable interpretation is to watch certification-authority behavior as a leading indicator of where requirements are heading. When a major authority signals that non-quantum-safe products will lose their seal, that is a forecast worth planning against — well before any statute or deadline formally lands.

Signal 02 — The Migration Window Is Being Compressed by Policy, Not by Quantum Hardware

No quantum computer broke anything this week, and yet the pressure to migrate is rising sharply. That is the pattern worth internalizing: the PQC timeline is being pulled forward by policy and procurement — the US 2030 deadline, Microsoft's enterprise guidance, and now France's certification posture — rather than by any change in the hardware threat. The "harvest now, decrypt later" logic means the migration cannot wait for the threat to become acute, and regulators are acting on exactly that reasoning.

The practical consequence for defenders is that quantum-safe readiness should be treated as a live planning item now, not a future one. The deadline-agnostic first move is cryptographic inventory — knowing where classical public-key cryptography lives across the estate — because that work is required no matter which jurisdiction's timeline binds first.

Signal 03 — PQC Migration Is Becoming a Transatlantic Baseline, Not a Regional Track

France's move matters most as a signal that post-quantum requirements are converging across major markets. With the US working through executive mandate and a European authority now working through certification, multinationals can no longer treat PQC as a single-jurisdiction compliance box. Our assessment is that quantum-safe capability is on track to become a shared baseline expectation across US and EU procurement, which changes the calculus for any vendor selling into both.

The forward-looking watch item is European coordination: whether ENISA and other member states align behind a common posture will determine how uniform that baseline becomes. We would treat France's certification stance as an early prompt for exactly that alignment conversation — and as a reason for EU-adjacent organizations to plan for quantum-safe requirements as a when, not an if.


Sources

TypeSource
PrimaryBruce Schneier — France to Stop Certifying Non-Quantum-Safe Encryption
ReportingFrance's cybersecurity authority (ANSSI) — announcement as surfaced in early July 2026
RelatedThe CyberSignal — US Executive Order Sets 2030 Post-Quantum Crypto Deadline
RelatedThe CyberSignal — Microsoft Accelerating the Quantum-Safe Timeline
RelatedThe CyberSignal — Apple Open-Sources CoreCrypto Post-Quantum Cryptography Work