Kyndryl puts enterprise encryption under the quantum microscope - SDxCentral

Kyndryl puts enterprise encryption under the quantum microscope The assessment service includes creation of a cryptographic bill of materials to map where and how encryption is used across systems December 15, 2025 By Julia King Have your say Facebook Twitter LinkedIn Reddit Email Share Kyndryl is inviting enterprises to take a hard look at their encryption, launching a new Quantum Safe Assessment service that underscores quantum safety as a present-day planning issue rather than a distant research concern.The assessment service includes creation of a cryptographic bill of materials (CBOM) to map where and how encryption is used across systems – including cloud infrastructure, mainframes, payment systems, customer databases, and third-party interfaces – and prioritizes risk based on data sensitivity and business impact. Kyndryl then works with customers to build a phased roadmap toward post-quantum cryptography (PQC), a class of cryptographic algorithms built to protect data from future attacks by quantum computers while remaining compatible with existing IT systems.“Quantum computing security readiness is no longer a future concern – it is a strategic imperative,” Kris Lovejoy, Kyndryl’s global security and resiliency leader, noted in a statement.As quantum computers become more advanced, the possibility of threat actors using them to break cryptographic security systems is known as the “post-quantum threat.” Despite growing attention to post-quantum cryptography, Kyndryl said awareness remains low. Its “2025 Readiness Report” found that only 4% of business leaders expect quantum computing to have the greatest impact on their organizations in the next three years.Kyndryl’s new assessment aligns with broader industry efforts to prepare for post-quantum risk as standards and tooling mature. Hyperscalers, including Google, have introduced quantum-focused tooling across cloud platforms. And recent solutions from infrastructure providers like Cisco, Palo Alto Networks, and Nokia have also addressed the issue, on the assumption that "Q-Day" – when a quantum computer becomes powerful enough to break encryptions – could be three to six years away.The National Institute of Standards and Technology (NIST) last year published three PQC encryption standards designed to protect data from future attacks by quantum computers. Those standards define quantum-resistant algorithms for establishment and digital signatures, marking the culmination of an eight-year effort to counter the threat that powerful quantum machines could one day break today’s widely used cryptography.NIST is encouraging organizations to begin transitioning to these new standards as soon as possible to safeguard sensitive data as quantum computing advances. Subscribe to The Cybersecurity Channel for regular news round-ups, market reports, and more.