PQC migration mandates, sector-specific compliance requirements, and standards body activity from NIST, ETSI, ISO, and ITU are converging into a regulatory environment that most organisations are only beginning to understand. The Forum tracks every mandate, every standard, and every certification requirement — and maps how they interact across borders.
Regulation and standards activity in quantum policy spans two distinct but connected tracks. The first is sector-specific: financial regulators setting PQC migration expectations, defence agencies mandating CNSA 2.0 adoption, and critical infrastructure frameworks incorporating quantum-safe requirements. The second is horizontal: standards bodies developing the algorithm specifications, certification schemes, and interoperability frameworks that the sector-specific mandates depend on.
Coverage includes NIST post-quantum algorithm standardisation and implementation guidance, ETSI quantum-safe cryptography and QKD certification standards, ISO/IEC quantum technology standardisation, ITU-T quantum network standards, sector-specific regulatory mandates (financial services, defence, telecoms, energy), and national PQC migration deadlines with their enforcement mechanisms.