Quantum computing and its impact on cyber security: a UK perspective

Unlike classical computers, which use bits to process information as either 0s or 1s, quantum computers use qubits that can exist in multiple states simultaneously. This enables quantum computers to perform complex calculations at speeds unattainable by traditional machines. While this offers groundbreaking potential in solving problems like drug discovery and optimising supply chains, it also creates vulnerabilities in our current cyber defences. 

Quantum computing uses quantum mechanics principles like superposition and entanglement to process data in fundamentally new ways. This allows it to solve problems beyond the capabilities of classical computers, such as cracking RSA-2048 encryption in hours.  

While the technology is still emerging, major players like the UK, US, and China are heavily investing in quantum R&D to gain strategic advantages. The UK’s £1 billion National Quantum Technologies Programme is already funding innovation across academia and industry, with a strong focus on ensuring cyber resilience in a quantum-enabled world. 

Over the next two to three years, UK businesses must begin strategic planning around quantum computing, even if large-scale quantum machines aren’t yet commercially deployed. The UK’s £1 billion National Quantum Technologies Programme is already funding innovation across academia and industry, with a strong focus on ensuring cyber resilience in a quantum-enabled world. 

The primary concern surrounding quantum computing and cyber security lies in its ability to break traditional encryption methods. Today, UK businesses rely on encryption protocols like RSA and ECC (Elliptic Curve Cryptography) to secure sensitive data, from financial transactions to healthcare records. These protocols depend on the difficulty of solving mathematical problems like factoring large numbers—problems that are easily handled by quantum computers running Shor’s algorithm. 

As quantum computing advances, current encryption standards could be rendered obsolete, leaving businesses and governments vulnerable to data breaches, intellectual property theft and other cyber threats. For instance, a malicious actor with access to a quantum computer could potentially decrypt sensitive data that is currently secure. 

While the quantum threat is serious, the technology also opens opportunities for UK businesses to become leaders in quantum-resistant solutions. The UK government has pledged £2.5 billion to bolster its position in quantum innovation by 2033, aiming to generate up to $1.3 trillion in value by 2035. UK businesses in cyber security, fintech, and other data-heavy sectors have an opportunity to innovate in creating secure systems for the post-quantum world. 

There are currently no quantum computing solutions that are presently delivering business value;, however the time for experimentation with quantum technology is fast approaching with enterprises like NVIDIA stating that value from quantum computing will be realised within the next three to five years.

Steps for UK businesses to take now:

1. Raise awareness: Ensure leadership teams understand the potential risks and opportunities of quantum computing. 
2. Assess vulnerabilities: Identify critical data and systems reliant on encryption and evaluate their susceptibility to quantum attacks. 
3. Engage with experts: Collaborate with organisations like the NCSC or quantum research groups to stay informed about quantum advancements and post-quantum solutions. 
4. Plan for transition: Begin developing a roadmap to transition to post-quantum cryptographic systems, keeping an eye on global standards.