Search

12 results for “NSA”

Mandates

MandateNSA Commercial National Security Algorithm Suite 2.0
NSA / US_FEDERAL
NSA's Commercial National Security Algorithm Suite 2.0 (CNSA 2.0) mandates transition timelines for National Security Systems (NSS) to post-quantum cryptographic algorithms. It supersedes CNSA 1.0 and establishes ML-KEM and ML-DSA as the required algorithms for NSS, with phased adoption milestones across firmware, software, and network equipment. The 2025 software and firmware deadline has passed; NSS networking equipment transitions are now active.
MandateCISA Post-Quantum Cryptography Initiative
CISA / US_FEDERAL
CISA's Post-Quantum Cryptography Initiative provides guidance, tooling, and resources to help federal agencies and critical infrastructure operators assess quantum risk and migrate to post-quantum cryptography. It includes the PQC Roadmap, sector-specific guidance, and collaboration with NSA and NIST on transition planning. CISA also operates the PQC Coalition to share threat intelligence and migration best practices with the private sector.
MandateCSA Singapore Post-Quantum Cryptography Advisory
CSA / SINGAPORE
The Cyber Security Agency of Singapore (CSA) has published advisory guidance encouraging organisations to begin preparing for the post-quantum transition. CSA recommends following NIST PQC standards (FIPS 203, 204, 205), adopting cryptographic agility, and conducting cryptographic asset inventories. The advisory targets Singapore government agencies, financial institutions, and critical information infrastructure operators.
MandateANSSI Position Paper on Post-Quantum Cryptography
ANSSI / FRANCE
France's ANSSI published a position paper recommending a hybrid cryptographic approach during the PQC transition period, combining classical algorithms with post-quantum algorithms to ensure security even if newly-standardised PQC algorithms later prove vulnerable. ANSSI supports migration to NIST PQC standards but advocates retaining classical protection until PQC algorithms have accumulated sufficient real-world operational validation.
MandateEU NIS2 Directive — Cryptography & PQC Provisions
ENISA / EU
The EU Network and Information Security Directive 2 (NIS2, Directive 2022/2555) requires essential and important entities across the EU to implement appropriate cryptographic measures as part of a risk-based cybersecurity framework. ENISA's technical guidelines explicitly incorporate post-quantum cryptography readiness as a forward-looking requirement. Member states were required to transpose NIS2 into national law by October 2024.

Issuers

IssuerNational Security Agency
NSA — US
https://www.nsa.gov
IssuerNational Cyber Security Centre
NCSC — UK
https://www.ncsc.gov.uk
IssuerNational Institute of Standards and Technology
NIST — US
https://www.nist.gov
IssuerCyber Security Agency of Singapore
CSA — Singapore
https://www.csa.gov.sg
IssuerCybersecurity and Infrastructure Security Agency
CISA — US
https://www.cisa.gov
IssuerEuropean Union Agency for Cybersecurity
ENISA — EU
https://www.enisa.europa.eu
IssuerAgence nationale de la sécurité des systèmes d'information
ANSSI — France
https://www.ssi.gouv.fr