Cisco, Meta, and AWS join the push against post-quantum risks

Following earlier announcements from Google and Cloudflare about preparing for quantum threats, Cisco, Meta, and Amazon Web Services have also joined the effort.

🛑 Cisco: infrastructure-level transition

Cisco is focusing on securing its Secure Firewall solutions. The company is already planning to integrate post-quantum cryptography into key components, including VPN, TLS, device management, and hardware-level secure boot.

New algorithms, such as ML-KEM for key exchange and ML-DSA and SLH-DSA for signatures, are expected to be introduced in releases between 2026 and 2027.

🛑 Meta: rethinking internal processes

Meta is introducing the concept of PQC Migration Levels to manage the complexity of transitioning across different systems and use cases.

Key steps include: 🔵prioritizing critical systems; 🔵inventorying all cryptographic assets; 🔵gradual deployment with attention to compatibility and performance; 🔵adopting a hybrid approach combining classical and post-quantum cryptography.

🛑 AWS: protecting secrets

Amazon Web Services is focusing on protecting data that could be harvested today and decrypted in the future. The company is implementing hybrid post-quantum mechanisms, combining classical cryptography with ML-KEM, in TLS connections within its Secrets Manager service.

At the same time, AWS follows a shared responsibility model, in which some protections are implemented automatically, while others remain the responsibility of the customer.

💬 Discuss