行业研究公司研究宏观策略财报招股书会议纪要 Token 低空经济十五五 AIGC 大模型

后量子密码技术转型协同实施路线图

信息技术 2025-06-11 NIS合作小组任云鹏

欧盟后量子密码过渡路线图

核心观点：量子计算的发展将威胁到当前密码系统的安全性，因此欧盟需要及时、全面和协调地向后量子密码（PQC）过渡。

关键数据：

德国联邦信息安全局（BSI）的最新研究表明，到2040年或更早，可能出现能够破解当前密码算法的量子计算机。
全球风险研究所的“量子威胁时间线报告”估计，未来十年内量子计算机能够破解RSA-2048的几率在19%-34%之间。

研究结论：

欧盟委员会于2024年4月11日发布了关于后量子密码过渡协调实施路线图的建议，并建议在NIS合作小组（NISCG）内建立PQC工作流。
该研报是NISCG PQC工作流的第一个交付成果，旨在为成员国提供一个高级概念文件，指导向PQC过渡。
建议的过渡路线图分为三个阶段，分别在2026年、2030年和2035年结束：
- 2026年底：所有成员国实施初步措施，并制定国家PQC过渡路线图。
- 2030年底：完成高风险用例的PQC过渡，并为中风险用例制定过渡计划。
- 2035年底：完成中风险用例的PQC过渡，并尽可能多地完成低风险用例的过渡。
建议的初步措施包括：
- 确定并参与利益相关者。
- 支持成熟的密码资产管理。
- 创建依赖关系图。
- 进行量子风险分析。
- 包括供应链。
- 创建国家意识和沟通计划。
- 与NISCG PQC工作流分享知识和经验。
- 制定时间表和实施计划。
建议的后续步骤包括：
- 支持密码灵活性和量子安全升级路径。
- 为过渡分配资源。
- 适应认证方案。
- 发展规则。
- 在生态系统中寻找机会。
- 在路线图创建和实施过程中包含跨活动。
- 实施试点用例并参与测试中心。
欧盟可以通过数字欧洲计划、地平线欧洲计划和其他行动来支持PQC过渡。

Part 1, Version: 1.1, EU PQC Workstream 11.06.2025 Contents 1Executive Summary2Introduction and motivation 3Scope and definitions3.1Scope . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3.2Definitions of frequently used technical terms . . . . . . . . . . . . . . . . . . 4Timeline4.1Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4.2The timeline in detail: Milestones, first and next steps. . . . . . . . . . . . . 5Estimating the quantum risk 6Steps towards the PQC migration6.1Introduction. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6.2First Steps. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6.3Next Steps. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7What the EU can do 1Executive Summary Digital infrastructures require robust cybersecurity.Cryptographic systems are vital toprotect the confidentiality and authenticity of data. Quantum computing will be a threatto many of the cryptographic algorithms used to achieve these protection goals. Data thatis currently not quantum-safe, whether it is stored or transmitted, and that must remainconfidential for a long time, may be compromised in the future by quantum computers Consequently, on 11.04.2024, the European Commission published a “Recommendationon a Coordinated Implementation Roadmap for the transition to Post-Quantum Cryptog-raphy” [1]. For the development of this “Implementation Roadmap” the Commission rec- This document is the first deliverable of the NIS CG work stream on PQC and is meant tobe a first high-level paper aimed at the Member States. The set of recommendations thatMember States need to implement for a synchronised transition to PQC are divided into First Stepsthat are required to initiate the transition, andNext Stepsthat should follow.The recommendations in this document include measures to ensure that all stakeholders ensure that the quantum threat becomes a part of risk management of all relevant enti-ties and to establish mature cryptographic asset management to facilitate the transitionto PQC and to improve cryptographic agility in general. Many of the steps highlighted in In addition to these recommendations, this document presents a recommended timelinefor the transition to PQC in the European Union, taking into account the current assess-ment of the status of quantum computer development by the German Federal Office for In particular, it is recommended that all Member States initiate a national PQC transitionstrategy followingFirst Stepsby the end of 2026 and coordinate their efforts at the EUlevel. At the same time, high-risk use cases should be transitioned to PQC as soon as pos-sible, no later than the end of 2030. Furthermore, quantum-safe upgrades should then beenabled by default and the PQC transition plans should be refined, in particular by imple-menting the recommendedNext Steps. By 2035, the transition should be completed for Over the past years, the EU has put in place a strong strategic, policy and legislative frame-work to strengthen the EU’s cybersecurity and collective resilience. In particular, the NIS 2Directive [2] and the Digital Operational Resilience Act (DORA) [4] require entities in scopeto adopt cybersecurity risk-management measures, including on the use of state-of-the-art cryptography, and provide that the entities’ management bodies can be held liable forfailing to comply with these requirements. Furthermore, the Cyber Resilience Act (CRA) [5]lays out horizontal cybersecurity requirements for all products with digital elements placedon the EU market starting from 11.12.2027, including a requirement to protect confiden-tiality through encryption where relevant. The necessity to ensure the authenticity and 2Introduction and motivation Cryptography is crucial to securing a broad range of services having a direct impact onour daily lives. Those encompass, for instance, digital government services, the bankingsystem, and communication services such as messaging apps.Cryptography is vital to If the currently deployed cryptography was to be broken, the consequences on digital in-frastructures would be devastating. The development of quantum computers poses sucha threat to cryptography. This is known since 1994, when Peter Shor published quantumalgorithms, which can be used to break many of the cryptographic algorithms in use. The There is currently no evidence that this is already possible. Nevertheless, in 2015 the USNational Security Agency (NSA) issued an urgent warning about the imminent threat tocurrent quantum-vulnerable cryptography posed by the development of quantum com-puters. European agencies have also publicly informed about this threat from early on, e.g.in [6]. In order to properly assess the current state of development or the potential futureavailability of quantum computers, the study “Status of quantum comp

点击免费查看完整报告

后量子密码技术转型协同实施路线图

欧盟后量子密码过渡路线图

你可能感兴趣

后量子密码技术：应对量子计算威胁的关键防线

后量子密码技术白皮书（2025 版）

后量子密码安全能力构建技术指南

宏观点评报告：修订后的《商用密码管理条例》7月实施释放行业利好，优化监管体系、促进技术应用

量子+密码技术解读报告（2023）

2025中国联通后量子密码白皮书

未来安全的风暴热点：后量子密码（PQC）

后量子密码发展进展与测试评估研究

后量子密码迁移白皮书（2024）

技术路线图 - 开发和实施指南