Quantum Readiness Gap Widens: Most Businesses Unprepared for Post-Quantum Threats

A new report from the Trusted Computing Group (TCG) published in December 2025 reveals a significant gap in business preparedness for post-quantum cryptography (PQC). While three-quarters of surveyed security professionals feel confident in understanding quantum threats, 91% of organizations lack a formal roadmap for migrating to quantum-safe algorithms.

Details of the Report

TCG surveyed 1,500 security professionals across the US, UK, and Europe. Key findings include 81% reporting their crypto libraries and hardware security modules are not ready for PQC integration. Many rely on legacy systems dependent on pre-quantum protocols. Despite awareness, planning remains limited, with timelines often driven by external pressure rather than technical readiness.

Impact and Recommendations

• Leaves critical systems vulnerable to future quantum attacks
• Risks “harvest now, decrypt later” data theft
• Delays compliance with emerging standards and regulations
• Conduct cryptographic inventory and assess high-risk assets now
• Develop a formal PQC migration roadmap with prioritized timelines
• Allocate budget for tooling and skills training in 2026

Eighty one percent of respondents said their crypto libraries and hardware security modules are not prepared for post quantum integration.

Trusted Computing Group Report (December 2025)

Source and full details:

Read the full TCG post-quantum readiness report summary here: https://www.helpnetsecurity.com/2025/12/04/tcg-post-quantum-readiness/