Quantum computing may feel like a distant science project. But the truth is that it is a technological evolution with real cybersecurity implications. It’s a geopolitical reality, and the G7 has officially put a timeline around how the world should respond.
In early 2026, the G7 Cyber Expert Group (CEP) released a coordinated roadmap for post‑quantum cryptography (PQC). The guidance sends a clear signal: organizations have a limited window to transition away from today’s quantum‑vulnerable encryption, and that window is already opening.
Here, we explain what the G7 roadmap says, why it matters, and what organizations are expected to do next, minus the policy jargon.
What the G7 Roadmap Is and What it Isn’t
The G7 roadmap is not a new law and it does not mandate specific technologies. Instead, it establishes a shared timeline and framework for transitioning to encryption that can withstand future quantum computers.
Originally framed for the financial sector, the roadmap explicitly acknowledges that any organization protecting sensitive or long‑lived data faces the same risk, including governments, healthcare providers, and operators of critical infrastructure.
Think of it as:
- A global alignment signal
- A planning deadline, not a compliance checkbox
- A warning that ‘wait and see’ is not a practical strategy in the current threat environment.
Here is the latest Vedere Labs research about the state of PQC adoption:
- 90% of systems are not safe from quantum decryption.
- 160 million SSH hosts on the internet support several different key exchange (KEX) algorithms.
- The 11 most popular KEX algorithms running on those servers are all susceptible to quantum attacks.
See all of the data.
Why the G7 Acted Now
Quantum computers threaten today’s public‑key cryptography through a simple but dangerous concept: ‘harvest now, decrypt later’.
Attackers can already capture encrypted traffic today and store it until quantum computers are powerful enough to break it. That means data with long‑term value, financial records, intellectual property, patient data, and national security information, may already be compromised, even if it looks secure right now.
The G7’s message is blunt: If your data needs to stay secret for decades, you must start protecting it before quantum computers arrive, not after.
The G7 Timeline: What Happens When
The roadmap defines a 2030–2035 migration window, but it makes one thing very clear: preparation starts now. Here’s the timeline in plain terms:

2026–2027: Awareness & Preparation
This is the “no more excuses” phase. Organizations are expected to acknowledge quantum risk at the executive level, begin defining a post‑quantum strategy, and assign clear ownership for cryptographic risk. If quantum risk is still confined to engineering discussions, the G7 perspective is that organizations are already behind.
2027–2028: Discovery & Inventory
You can’t fix what you can’t see. During this phase, organizations should build a comprehensive inventory of cryptographic usage, identify where encryption is deployed across IT, OT, IoT, and third‑party connections, and understand the dependencies between systems, vendors, and protocols. This stage is repeatedly emphasized in G7 guidance because most organizations lack visibility into where vulnerable cryptography exists.
2028–2029: Risk Assessment & Planning
Not all encryption carries the same level of risk. The G7 highlights the need to prioritize systems handling sensitive, long‑lived data, consider exposure rather than focusing solely on algorithm strength, and develop migration plans that reflect real‑world operational constraints. This is the point where organizations determine what must be addressed first and what can safely be deferred.
2030–2032: Migration Execution
This phase represents the core of the transition effort. Quantum‑resistant algorithms are progressively deployed, with critical systems migrating first, and hybrid or transitional approaches expected. The G7 makes it clear that this will not be a single “big bang” cutover—migration will occur in stages over time.
2032–2034: Migration Testing
Changing cryptography introduces risk, making validation essential. Organizations are expected to confirm that migrated systems function as intended, test interoperability with partners and broader ecosystems, and identify any gaps introduced during the transition.
2035 and Beyond: Validation & Monitoring
Quantum risk does not end in 2035. The roadmap emphasizes the need for continuous validation, ongoing monitoring of cryptographic posture, and the ability to adapt as standards evolve and new threats emerge.
This leads directly to one of the G7’s strongest themes: cryptographic agility.
A Key G7 Principle: Cryptographic Agility
The G7 is explicit that ‘quantum‑safe’ does not mean ‘quantum‑proof forever’. Algorithms will evolve. Standards will change. New vulnerabilities will emerge. Organizations are encouraged to design systems that:
- Can rotate algorithms without full redesign
- Support hybrid cryptography during transitions
- Avoid hard‑coding cryptographic assumptions into infrastructure
In other words, the G7 is asking for resilience.
Why the G7 PQC Roadmap Matters Beyond Finance
Although the roadmap is framed around financial institutions, its implications are much broader. Any organization that:
- Handles sensitive data with long retention periods
- Relies on public networks, ISPs, or shared infrastructure
- Operates critical services
…faces the same quantum risk profile. That’s why the G7 roadmap now shows up in:
- Government security planning
- Critical infrastructure discussions
- Vendor roadmaps and product strategies
G7’s and PQC in an AI‑Accelerated Threat Landscape
From a G7 perspective, frontier AI reinforces the core premise of the post‑quantum roadmap: cybersecurity fundamentals have not changed, but the speed at which they must operate has … Just as AI is collapsing the time between vulnerability discovery and exploitation, quantum risk compresses the margin for cryptographic complacency.
The G7 roadmap is less about predicting the exact arrival of cryptographically relevant quantum computers and more about acknowledging a structural shift, where long‑lived weaknesses can be harvested today and operationalized faster than institutions were designed to respond. In that environment, counting vulnerabilities or deferring migration until standards fully settle isn’t the best path forward.
What matters is exposure, reachability, and operational control: knowing where cryptography is used, which paths are exploitable, and whether organizations can enforce segmentation and cryptographic change at pace. Seen through this lens, the G7 roadmap is a response to an already‑accelerating threat environment where resilience depends on visibility, agility, and the ability to act before speed itself becomes the attacker’s advantage.
Your Takeaway: the Clock Is Already Ticking
The most important thing to understand about the G7 roadmap is that 2030 is the midpoint. By the time migration begins in earnest, organizations are expected to already know:
- Where their cryptographic risks are
- Which systems matter most
- How they will adapt as standards evolve
The agencies, departments and organizations that succeed will be the ones that treat the G7 roadmap as what it really is: a chance to get ahead of a generational security shift before urgency overtakes strategy.
How Forescout Helps
Unlike static assessments that only verify if devices support quantum-safe encryption, Forescout’s technology monitors actual behavior. It detects when devices communicate using unsafe ciphers. This distinction matters because devices can be tricked into downgrading to vulnerable encryption, creating exposure even in supposedly secure environments.
The Forescout Vistaro™ platform delivers a comprehensive quantum-safe strategy aligned with the G7 roadmap phases:
Detect (Awareness & Discovery Phases): Forescout’s patented technology identifies PQC-safe and non-safe assets in real time, providing the comprehensive cryptographic inventory the G7 roadmap demands.
Assess (Risk Assessment & Planning Phases): With Forescout eyeSegment, organizations can isolate critical systems and secure communication pathways through network segmentation — a crucial step before migration begins.
Control (Validation & Monitoring Phase): Forescout protects at-risk devices by limiting their traffic, providing ongoing assurance that quantum-vulnerable communications don’t compromise security.
Govern (Migration Execution & Testing Phases): Backed by threat intelligence from Forescout Research – Vedere Labs, Forescout detects rogue assets or misconfigurations to swiftly target policy enforcement during the migration process.
See how Forescout can help you identify what is and is not safe in a PQC world.