SEPTEMBER 2025: Current Cryptography, Quantum Risks, and the Road Ahead! 

Acubed IT recently took part in TRUST International Conference: Post Quantum Cryptography and AI hosted by Professor Bill Buchanan OBE FRSE and Peter Ferry from Edinburgh Napier University, bringing together leading voices in quantum and cybersecurity. The event featured a range of speakers including Daniel J. Bernstein, Jaime Gómez García, Dr. Mark Tehrani, Jan Willemson, and Callum Turino. Representing Acubed IT, Amit Gupta joined the expert panel to answer audience questions, while Mwarwan Abubakar delivered a presentation on our Post-Quantum Cryptography Risk Assessment tool. 

The key message thorughout the conference was clear: the challenge is not predicting when quantum computers will arrive but building crypto-agility and compliance programmes now. Migration to post-quantum cryptography will be lengthy and complex, often spanning 5–10 years, and the hardest step is discovery which includes understanding where cryptography is used across systems and applications. From there, organisations must stabilise legacy systems, pilot hybrid approaches, and ultimately roll out quantum-safe solutions with strong governance. 

Another strong theme was that crypto hygiene and key management are just as important as algorithms. Even quantum-resilient cryptography is vulnerable to poor practices, especially in hybrid environments. Regulatory frameworks like NIST PQC standards, NCSC CAF, and GovAssure will play a vital role in shaping the transition, and businesses need to treat this as a board-level programme, not just an IT concern. 

The consensus was simple: the migration to quantum-safe cryptography is a present-day responsibility. Delays only compress the migration window, increase risk, and make the transition more complex. Organisations that act now by starting discovery, engaging vendors, and piloting hybrid solutions will be better prepared for the critical milestones of the 2030s.