Implementing Post-Quantum Cryptography in Financial Services A Practical Roadmap for UK/EU Institutions

Creating a comprehensive CBOM typically takes 3-12 months depending on organisation size and system complexity. Mid-tier banks face challenges around legacy system documentation where cryptographic implementations may be undocumented or poorly understood. Major banks encounter additional complexity from merger and acquisition activity, resulting in fragmented technology estates with overlapping cryptographic deployments. Insurers must contend with distributed systems spanning multiple business units, agencies, and legacy platforms. The discovery phase requires investment in both tooling and expertise, but remains essential, without visibility into your cryptographic estate, migration planning becomes impossible and regulatory compliance cannot be demonstrated.

Critical priorities: Payment infrastructure (SWIFT, SEPA, Faster Payments, clearing houses), customer-facing systems (mobile apps, online banking TLS, APIs), data protection (database encryption, backups).

Why essential: FCA, PRA, and DORA expect documented cryptographic inventories as baseline evidence of operational resilience and DORA Article 8 crypto-agility readiness.

For DORA Article 8 and GDPR requirements: Post-Quantum Cryptography and Regulatory Compliance: GDPR, DORA, and Beyond

Without comprehensive inventory, you cannot plan migration scope, estimate costs, prioritise systems, or demonstrate compliance.

The solution: Hybrid cryptography combines classical (RSA/ECC) and post-quantum (ML-KEM, ML-DSA) algorithms simultaneously, providing protection against both threats whilst maintaining backward compatibility.

Why hybrid works for financial institutions:

✅ Zero downtime during transition
✅ Interoperability with non-PQC partners
✅ Future-proof protection
✅ Regulatory aligned (NCSC and NIST recommend it)
✅ Risk mitigation (doesn’t rely on single algorithm)

Session keys use BOTH algorithms. Security requires breaking BOTH- if one is compromised, the other protects data.

• For NCSC three-phase roadmap details: NCSC Guidance on PQC: What UK/EU Organisations Need to Know

ML-KEM keys: 800-1,568 bytes (vs. ECC: 32-64 bytes); ML-DSA signatures: 2,420-4,595 bytes (vs. ECDSA: 64-96 bytes). Impact: TLS +1-5ms latency, slightly larger payment messages, minimal mobile UX impact. High-frequency trading requires validation of 10,000+ transactions/second capability.

Implementation costs vary substantially by system type and complexity. Customer-facing systems like web and mobile TLS represent the entry point, whilst payment gateways demand more extensive investment due to performance requirements and interoperability testing. Core banking platform migrations require the most significant investment—often 12-24 months due to legacy system integration and phased rollouts maintaining service continuity. Hardware security module (HSM) replacements add substantial capital costs.

Across the technology estate, mid-tier banks typically invest in the low-to-mid millions over 3-5 years, whilst major banks require significantly more. The business case remains compelling: proactive PQC investment represents a fraction of potential quantum breach costs, which could reach hundreds of millions or billions in regulatory fines, customer compensation, and reputational damage.

The principle: Cryptographic standards evolve. Financial institutions need crypto-agility – the capability to update algorithms without rebuilding systems.

✅ Abstracted cryptographic functions
✅ Centralised key management supporting multiple algorithm types
✅ Comprehensive monitoring of algorithm usage
✅ Rapid switchover via configuration, not code rewrites

Implementing crypto-agility:

1. Centralised Key Management: Deploy enterprise systems supporting multiple algorithm types, API-based lifecycle management, hybrid mode, and rapid switchover capability.

2. Cryptographic Service Provider (CSP) Layer: Create abstraction between applications and cryptography. Applications call CSP APIs; CSP handles algorithm selection. Enables RSA → Hybrid → ML-DSA transitions with minimal disruption.

3. Monitoring and Governance: Deploy tools that identify algorithms in use, alert on deprecated usage, track PQC progress, and detect anomalous behaviour.

4. Executive Governance: Establish CISO/CRO ownership, cross-functional teams, quarterly board reporting, policy frameworks, and vendor PQC requirements in procurement.

DORA Article 8 compliance: This framework demonstrates the “ICT business continuity” capability DORA requires.

Long-term benefits: Regulatory compliance (FCA, PRA, DORA), future-proof readiness, reduced costs (next transition 50-70% cheaper), operational resilience, and competitive advantage.

Core banking: Temenos, FIS, Finastra – verify PQC roadmaps, hybrid support, migration timelines

Payment processors: SWIFT Alliance quantum readiness, card processing platforms, payment gateway PQC support

Cloud/infrastructure: AWS, Azure, Google Cloud quantum services; HSM providers (Thales, Entrust); database encryption

Fintech/API partners: Open banking quantum security, digital wallet resilience, RegTech assessment

DORA requirements: Include PQC in contracts, establish vendor quantum SLAs, assess concentration risk, develop exit strategies

What is your PQC migration roadmap and timeline?

Which NIST standards (ML-KEM, ML-DSA, SLH-DSA) will you support?

Do you support hybrid cryptography?

What are performance implications for our workloads?

Without vendor quantum readiness, your implementation may be blocked or you inherit third-party quantum risk.

• For blockchain vendor assessment: Securing Blockchain in a Quantum World: What UK/EU Innovators Should Prepare For