Compliance & Certification

Streamlined access to cryptographic module validations (FIPS 140-3), algorithm validations (ACVP), and Common Criteria certifications, with a focus on Post-Quantum Cryptography (PQC) readiness.

NIST CMVPFIPS 140-3 L3

NIST CAVPAlgorithm Validation

CC PortalGlobal CC & EUCC

ANSSI (FR)CC Certifications

BSI (DE)CC Certifications

9Frameworks

6Require PQC

1Explicit Deadlines

PQC Compliance Deadlines

2024202620282030203220342036

Imminent Near-term Future Today

GSMA NG.116 / FS.40

Requires PQCGSMA

2026-2028

GSMA PQC guidelines for mobile network operators

Global

Telecom

1 ref Timeline

Common Criteria

Requires PQCCC Recognition Arrangement

Ongoing — PQC protection profiles emerging

International security evaluation framework

Global

Gov/DefTech

1 ref

DO-326A / ED-202A

Requires PQCRTCA/EUROCAE

Ongoing

Airworthiness security process specification for aircraft systems

Global

Aero

IEC 62443

Requires PQCIEC

Ongoing

Industrial cybersecurity standard for OT/ICS environments

Global

EnergyAero

ISO/SAE 21434

Requires PQCISO/SAE

Ongoing

Road vehicle cybersecurity engineering standard

Global

Auto

RTCA DO-355A

Requires PQCRTCA

Ongoing

Information security guidance for continuing airworthiness

Global

Aero

ISO 27001

No PQC mandate yetISO/IEC

Ongoing

International information security management standard

Global

FinanceTechHealthTelecomEnergy

PCI DSS

No PQC mandate yetPCI SSC

No explicit PQC timeline yet

Payment Card Industry Data Security Standard

Global

FinanceRetail

SWIFT CSP

No PQC mandate yetSWIFT

Annual

SWIFT Customer Security Programme mandatory controls

Global

Finance

9Frameworks

6Require PQC

1Explicit Deadlines

PQC Compliance Deadlines

2024202620282030203220342036

Imminent Near-term Future Today

GSMA NG.116 / FS.40

Requires PQCGSMA

2026-2028

GSMA PQC guidelines for mobile network operators

Global

Telecom

1 ref Timeline

Common Criteria

Requires PQCCC Recognition Arrangement

Ongoing — PQC protection profiles emerging

International security evaluation framework

Global

Gov/DefTech

1 ref

DO-326A / ED-202A

Requires PQCRTCA/EUROCAE

Ongoing

Airworthiness security process specification for aircraft systems

Global

Aero

IEC 62443

Requires PQCIEC

Ongoing

Industrial cybersecurity standard for OT/ICS environments

Global

EnergyAero

ISO/SAE 21434

Requires PQCISO/SAE

Ongoing

Road vehicle cybersecurity engineering standard

Global

Auto

RTCA DO-355A

Requires PQCRTCA

Ongoing

Information security guidance for continuing airworthiness

Global

Aero

ISO 27001

No PQC mandate yetISO/IEC

Ongoing

International information security management standard

Global

FinanceTechHealthTelecomEnergy

PCI DSS

No PQC mandate yetPCI SSC

No explicit PQC timeline yet

Payment Card Industry Data Security Standard

Global

FinanceRetail

SWIFT CSP

No PQC mandate yetSWIFT

Annual

SWIFT Customer Security Programme mandatory controls

Global

Finance

PQC Today

Compliance & Certification

PQC Compliance Deadlines

GSMA NG.116 / FS.40

Common Criteria

DO-326A / ED-202A

IEC 62443

ISO/SAE 21434

RTCA DO-355A

ISO 27001

PCI DSS

SWIFT CSP

PQC Compliance Deadlines

GSMA NG.116 / FS.40

Common Criteria

DO-326A / ED-202A

IEC 62443

ISO/SAE 21434

RTCA DO-355A

ISO 27001

PCI DSS

SWIFT CSP

What's New