CSA Releases A Quantum-Safe Handbook And Quantum Readiness Index

The Cyber Security Agency of Singapore (CSA) has released a Quantum-Safe Handbook and Quantum Readiness Index (QRI). This was announced by Mrs Josephine Teo, Minister for Digital Development and Information and Minister-in-charge of Cybersecurity and Smart Nation Group at the Singapore International Cyber Week (SICW) 2025.

2            Quantum computing is expected to transform industries by enabling new breakthroughs in areas such as logistics, pharmaceuticals, and finance. However, it also introduces the “quantum threat”: the expectation that when sufficiently powerful quantum computers arrive, they will be misused by threat actors to break the existing cryptography that underpins today’s digital infrastructure. Such infrastructure facilitates critical processes for organisations, including financial transactions, secure communication and identity management. If these systems are compromised or attacked, it could disrupt business operations, erode customer trust, and compromise the confidentiality of critical data.

3            To address this risk to their cryptographic assets and systems, organisations need to transit to quantum-safe solutions, a process known as quantum-safe migration. While there is uncertainty over the timeline for the quantum threat, organisations should start preparing and planning for quantum-safe migration as soon as practically possible to minimise the potential risks and avoid unnecessary rush. The challenge lies in the scale of effort and time required for migration, as transitioning existing systems, products, and processes to quantum-safe cryptography is likely to be a complex and multi-year effort. While awareness of the quantum threat is increasing, organisations may still face uncertainty on the steps to prepare for quantum-safe migration. To support organisations in their preparation, CSA has developed two initiatives in collaboration with public and private stakeholders:

              a. Quantum-Safe Handbook: The handbook provides guidance for organisations, in particular Critical Information Infrastructure (CII) owners and government agencies, in preparing for the quantum-safe transition. It explains what is at stake, highlights key areas of focus, and sets out practical considerations and resources for organisations to begin building readiness. This handbook was jointly developed by CSA, GovTech, and IMDA, in collaboration with leading technology companies, cybersecurity consultancies, and professional associations.

              b. Quantum Readiness Index (QRI): To help organisations translate awareness into action, the QRI is a self-assessment questionnaire that complements the Quantum-Safe Handbook. It helps system owners and security practitioners gauge their organisation’s state of readiness, prioritise key actions, and facilitate informed discussions with senior management.

4            These two documents will be put up for public consultation from 23 Oct to 31 Dec 2025. CSA welcomes CII owners, government and industry stakeholders, and experts to provide feedback, which will support us in refining these resources on quantum-safe migration. The quantum-safe domain, including commercial products and international standards, is constantly evolving. CSA will continue to work with industry, academia, and government partners to develop practical measures and build capabilities that support organisations in their quantum-safe preparations.

5            The Quantum-Safe Handbook and Quantum Readiness Index can be accessed on CSA’s website: https://www.csa.gov.sg/resources/publications/quantum-safe-handbook-and-quantum-readiness-index.

***End***

About the Cyber Security Agency of Singapore

Established in 2015, the Cyber Security Agency of Singapore (CSA) seeks to keep Singapore’s cyberspace safe and secure to underpin our National Security, power a Digital Economy and protect our Digital Way of Life. It maintains oversight of national cybersecurity functions and works with sector leads to protect Singapore’s Critical Information Infrastructure. CSA also engages with various stakeholders to heighten cyber security awareness, build a vibrant cybersecurity ecosystem supported by a robust workforce, pursue international partnerships and drive regional cybersecurity capacity building programmes.

CSA is part of the Prime Minister’s Office and is managed by the Ministry of Digital Development and Information. For more news and information, please visit www.csa.gov.sg.