Abstract
The advent of quantum computing is reshaping the cybersecurity landscape, threatening classical asymmetric cryptography and introducing new attack vectors. This systematic review consolidates studies addressing risk vectors, regulatory initiatives, and mitigation strategies, including post-quantum cryptography (PQC), critical infrastructure hardening, and cryptographic inventory management.
Introduction
Critical sectors—including energy, transport, communications, and space systems—rely heavily on cryptography to ensure confidentiality and integrity. As quantum computing matures, organizations must proactively plan transitions to secure data over the long term, particularly in light of “harvest now, decrypt later” threats. Recent reports reveal limited readiness in the industry and provide roadmaps for gradual cryptographic migration.
Scope and Methodology
I reviewed bibliometric analyses, systematic reviews, and technical reports from 2018 to 2025, focusing on quantum computing impacts on cybersecurity, frameworks for PQC adoption, and risk assessments in critical sectors.
Key Findings
- Cryptographic threats are projected to become critical within 5–15 years for infrastructures requiring long-term confidentiality. Official guidelines outline identification, prioritization, and migration phases extending to 2035.
- Key gaps include shortages of PQC expertise, a lack of unified standards, and operational costs of migration.
- Recommended strategies include inventorying critical keys and services, phased adoption of PQC, and hybrid classical–quantum cryptography during transition.
Technical and Operational Challenges
Implementing PQC in resource-constrained environments, such as satellites or embedded systems, presents significant challenges. Interoperability among providers and verification of PQC implementations remain crucial. Emerging threats related to distributed quantum systems and quantum supply chains demand attention.
Conclusion
Transitioning to quantum-resilient systems is inevitable. Literature emphasizes preventive, coordinated action—especially for space systems and other critical infrastructure—through audits, standard updates, and capacity building.
Bibliographic References:
Keyfactor. (2025). Nearly half of enterprises aren’t prepared for quantum cybersecurity threats. ITPro. Retrieved from https://www.itpro.com/security/nearly-half-of-enterprises-arent-prepared-for-quantum-cybersecurity-threats
National Cyber Security Centre. (2025). UK cybersecurity agency warns over risk of quantum hackers. The Guardian. Retrieved from https://www.theguardian.com/technology/2025/mar/20/uk-cybersecurity-agency-quantum-hackers
ResearchGate. (2025). Quantum Computing and Cybersecurity: Systematic Review of Algorithms, Challenges, and Emerging Solutions. Retrieved from https://www.researchgate.net/publication/393842958_Quantum_Computing_and_Cybersecurity_Systematic_Review_of_Algorithms_Challenges_and_Emerging_Solutions