Developments in quantum computing present a big challenge to cybersecurity, creating the urgent need for the European Union (EU) to act proactively to safeguard digital infrastructure and the economy against future quantum-enabled cyberattacks. However, the response must consider vulnerabilities in digital supply chains, where network interconnectedness creates multiple points of entry for adversaries.
The EU’s NIS 2 Directive offers a framework for addressing supply chain risks by expanding cybersecurity requirements across essential and non-essential sectors. In the quantum context, NIS 2 can play an essential role in coordinating and upgrading the level of cybersecurity of the whole European economy by mandating the transition to quantum-safe systems in the affected sectors first.
Time is of the essence. In securing the EU’s economy against quantum-enabled cyberattacks, both quantum-key distribution (QKD) and post-quantum cryptography (PQC) have a role to play. Only by leveraging Europe’s strengths and making use of the instruments available will Europe be ready for the era of quantum computing.
With this in mind, this paper offers a series of policy recommendations, including enhancing awareness in the national cybersecurity agencies and industry on the importance of transitioning to quantum-safe systems, establishing a dual quantum-safe roadmap, and introducing quantum-safe as a requisite in public procurement.
Read the full paper here.