France to stop certifying products lacking quantum-resistant encryption
France’s cybersecurity agency ANSSI will stop certifying security products that do not use quantum-resistant encryption in 2027, and is urging businesses to buy only quantum-safe products by 2030. Because ANSSI certification is required for French government agencies and critical infrastructure, the move would effectively force vendors to prove post-quantum cryptography readiness to keep public-sector access. ANSSI framed the shift as a matter of governance, industrial planning, regulation, and sovereignty. The timing matches the US NSA’s CNSA 2.0 rollout, which also makes 2027 a key deadline for quantum-resistant algorithms in national security systems. Both moves signal that post-quantum cryptography is becoming a mandatory standard rather than a future option.
