France moves to block certification of products without quantum-resistant encryption

France’s national cybersecurity agency will refuse to certify digital products that do not incorporate quantum-resistant encryption, beginning in 2027, with full adoption of post-quantum cryptography across certified products targeted for 2030. The policy, reported by CoinTelegraph on 18 June 2026, is one of the most forceful national-level mandates on the issue to date and would ripple through every vendor selling into the French public sector — and, by extension, into the European single market that has long treated French certification as a benchmark.

The move reframes a slow-burning technical debate as a hard procurement question. For more than a decade, cryptographers have warned that a sufficiently powerful quantum computer would render the RSA and elliptic-curve schemes that protect most internet traffic effectively obsolete. Until now, the response has been voluntary: agencies such as the U.S. National Institute of Standards and Technology have published post-quantum standards, and large technology firms have begun piloting them. France is the first major European government to convert that guidance into a certification gate.

What the agency is actually doing

The relevant body is France’s national cybersecurity agency, ANSSI, which operates under the Secretariat-General for National Defence and Security and is responsible for issuing security visas and certification labels for products sold to French government customers and operators of critical infrastructure. According to the 18 June 2026 CoinTelegraph report, ANSSI intends to deny certification to any product that does not integrate post-quantum cryptographic primitives from 2027, with complete adoption — meaning the older algorithms are phased out of the certified baseline — by 2030.

The policy tracks the standardisation work of NIST, which in 2024 finalised the first set of post-quantum algorithms, including ML-KEM (formerly CRYSTALS-Kyber) for key encapsulation and ML-DSA (formerly CRYSTALS-Dilithium) for digital signatures. ANSSI has previously signalled alignment with those standards, but converting alignment into a certification requirement is a different order of commitment: it means a vendor whose product is still using RSA-2048 or classical elliptic-curve for, say, firmware signing or session establishment will be unable to sell into French government and critical-infrastructure procurement from 2027.

The compliance burden, and who absorbs it

The practical impact falls on three groups. First, large prime contractors — the Thales, Atos, Capgemini and Orange Cyberdefense tier of the French market, alongside non-French vendors such as IBM, Microsoft and Google Cloud that maintain certified offerings for European public-sector buyers. These firms have begun productising post-quantum support, but the migration touches every line of code that touches a TLS handshake, a code-signing routine or a hardware root-of-trust.

Second, the long tail of small and mid-sized software vendors, for whom a certification cycle is expensive and disruptive. ANSSI certification is a multi-year process; products that begin the cycle in 2026 may be mid-assessment when the 2027 cutoff lands. The agency has not yet published a grandfathering arrangement, and CoinTelegraph’s reporting does not specify one. This publication notes that the absence of a transition window is the single most consequential operational detail still missing from the public record.

Third, hardware makers — particularly the makers of smart cards, secure elements, and industrial control systems with long product lifecycles. Replacing the cryptographic core of a deployed device can require a complete hardware revision, not a software patch. A 2030 deadline for full adoption compresses the timeline for any device that ships between now and 2027.

Why France, and why now

The decision reads against the broader European push to assert technological sovereignty in security-critical layers of the digital stack. The EU’s Cyber Resilience Act, the NIS2 directive, and the proposed European Cryptographic Coordination Plan all push in the same direction: codify requirements that member states can then enforce through procurement. ANSSI has historically been the most prescriptive of the European national agencies, in part because of the size of the French state’s own procurement footprint and in part because of a longstanding French institutional preference for explicit national standards over harmonised European ones.

The geopolitical context is harder to ignore. As Western agencies brace for a future in which state-aligned quantum capability could theoretically decrypt stored or intercepted traffic — the so-called harvest-now-decrypt-later threat — the question of which algorithms protect which data becomes a question of which jurisdiction a government trusts. France’s certification regime effectively tells vendors: if you want to sell into French critical infrastructure, you will use the cryptographic primitives the French state has decided to trust, on the French state’s timeline.

There is a counter-reading worth airing. A national-level mandate risks fragmenting the European single market at exactly the moment the EU is trying to harmonise cybersecurity requirements. A French product certified under ANSSI rules may not satisfy German BSI requirements, and vice versa; vendors selling across the EU could end up maintaining multiple cryptographic configurations. The structural answer is harmonisation at the European level — and the EU has signalled it intends to deliver that, but the relevant regulation is still in draft.

The counter-narrative, and what remains uncertain

Two things remain genuinely unsettled. First, the quantum threat itself: while the theoretical risk to public-key cryptography is well established, the timeline for a cryptographically relevant quantum computer remains a matter of expert disagreement. Some researchers put it within the decade; others consider it further out. A 2027 certification cutoff priced into a 2030 full-adoption deadline is, in effect, a bet that the threat materialises on a faster curve than the more conservative estimates imply.

Second, the standards themselves. NIST’s post-quantum selections are the most studied candidates in the field, but they are not the only ones, and the cryptographic community continues to debate the security margins of lattice-based schemes against future classical and quantum attacks. ANSSI’s alignment with the NIST process, while pragmatic, ties French procurement to the outcome of a U.S.-led standardisation effort — a dependency that sits awkwardly with the sovereignty rhetoric that animates the policy.

What this publication would flag for readers is the asymmetry between the firmness of the 2027 deadline and the softness of the surrounding details. CoinTelegraph’s report does not specify the grandfathering policy, the cost of compliance for small vendors, the position of the European Commission on a parallel EU-wide mandate, or the prospects for reciprocity with peer agencies in Germany, the Netherlands and Spain. Those are the questions that will determine whether the French move is remembered as a decisive modernisation or as a unilateral shift that European vendors had to navigate around.

For now, the headline is clear enough: from 2027, an unquantised product will not pass French certification, and from 2030, the older algorithms will be off the certified baseline entirely. Vendors selling into the French state have roughly six months to begin the migration if they have not already.

Monexus framed this as a procurement and sovereignty story rather than a pure cryptography piece; the technical risk is the engine, but the European single-market question is the long-tail consequence.

Wire provenance

This editorial synthesis draws on the following public wire/social posts:

• https://www.nist.gov/news-events/news/2024/08/nist-releases-first-3-finalized-post-quantum-encryption-standards
• https://en.wikipedia.org/wiki/Post-quantum_cryptography
• https://en.wikipedia.org/wiki/ANSSI
• https://en.wikipedia.org/wiki/Cyber_Resilience_Act