What Microsoft actually announced
On 30 June 2026, Azure chief technology officer Mark Russinovich said Microsoft is accelerating its Quantum Safe Program to migrate all products and services to post-quantum cryptography by 2029, pulling the target forward by roughly four years. His framing was blunt: the quantum capabilities are accelerating, and the time to respond is now.
The programme is deliberately wide. Microsoft named network cryptography through TLS 1.3, code signing and certificate issuance, the trust chains behind updates, and encryption for data at rest. The company also stressed crypto-agility - designing systems so an algorithm can be swapped with minimal application change - and folding these requirements into its Secure Future Initiative.
Why the date moved, and why it matters now
The threat is not that a quantum computer will break your traffic in 2029. It is that an attacker can copy your encrypted data today and store it until the hardware exists to open it. Long-lived secrets - patient records, contracts, source-signing keys, state archives - are exposed the day they are captured, not the day quantum arrives. Microsoft cited recent United States and French government guidance recommending quantum-safe adoption in high-risk systems by 2030 as part of the reason it moved.
Here is the non-obvious part. When the vendor that runs your identity, your cloud and your update pipeline sets 2029 for itself, that becomes your effective ceiling too. Your certificates, your signed code and your key management inherit Microsoft's clock whether or not you have a plan of your own.
What a European owner should do first
Start with a cryptographic inventory, not a product purchase. You cannot migrate algorithms you have not located, and most organisations do not know where their long-lived keys and certificates actually live. Map what is signed, what is encrypted for years, and what depends on a supplier's cryptography you do not control. That map is the deliverable that makes every later step cheaper.
Then treat crypto-agility as the real goal. NIS2 and DORA already expect firms to manage this class of risk, and the United Kingdom's NCSC has published its own migration timeline. The winners will not be the firms that rushed to a single algorithm in 2026. They will be the ones that built systems able to change cryptography again in 2032 without a rebuild.
Read next: A US Quantum Deadline Reaches Your Supply Chain | Your AI Code Editor Can Run Attacker Code



