16.1.3 — Quantum & Sovereign Cryptographic Infrastructure — maturity: experimental

Post-Quantum Crypto Migration

Using satellite-distributed post-quantum cryptographic key material and algorithm negotiation to harden national communications infrastructure against harvest-now-decrypt-later attacks.

Auto-drafted reference page — content reviewed for shape, individual references not yet link-checked.

Every encrypted government transmission sent today is potentially being archived by adversaries who will decrypt it the moment a sufficiently powerful quantum computer exists. The threat is not theoretical: NIST finalised its first post-quantum cryptographic standards in 2024, implicitly confirming that classical RSA and elliptic-curve schemes have a measurable countdown. Nations that rely on foreign cloud providers or leased satellite bandwidth for key distribution have already ceded the timing and terms of their own cryptographic transition.

Satellites contribute two things that terrestrial infrastructure cannot easily replicate: a broadcast medium for authenticated algorithm negotiation that bypasses compromised fibre chokepoints, and a sovereign-controlled channel for distributing PQC public parameters and root-of-trust certificates to embassies, naval vessels, forward bases and disaster-struck regions where terrestrial PKI infrastructure is unavailable. A LEO constellation acting as a flying certificate authority — running CRYSTALS-Kyber for key encapsulation and CRYSTALS-Dilithium for digital signatures — provides a resilient, unjammable fallback for the national PKI hierarchy.

The operational outcome is a defence-in-depth posture: even if terrestrial PQC rollout is slow or uneven, any node with line-of-sight to one constellation satellite can pull a fresh, quantum-resistant session key and verify its chain of trust back to a sovereign root. Ministries of finance, defence communications units, and critical infrastructure operators gain a migration bridge that does not depend on foreign certificate authorities, foreign standards bodies setting the pace, or commercial operators deciding when to flip the switch.

What matters

NIST FIPS 203 (Kyber) and FIPS 204 (Dilithium) are now published standards; every government PKI running RSA-2048 or ECDSA is formally on a deprecation clock.
Harvest-now-decrypt-later attacks mean adversaries are collecting ciphertext today; the damage window opens the moment quantum compute crosses threshold, not when migration is announced.
Foreign commercial satellite operators can be compelled by their home jurisdiction to withhold, delay or audit key-distribution services — sovereign infrastructure removes that leverage entirely.
Satellite-distributed PQC key material is the only practical out-of-band fallback for embassies, ships and forward operating bases that cannot rely on domestic fibre for PKI synchronisation.

Sovereignty score: 9/10 — A nation that cannot control the timing, standards and root of trust for its own cryptographic migration has effectively outsourced the security of every classified communication it has ever sent.

Foreign certificate authorities and commercial satellite operators are subject to legal intercept orders and export controls that can interrupt or compromise a nation's PQC transition at the worst possible moment.
Cryptographic standards are a geopolitical instrument: dependence on foreign-defined algorithm suites creates a covert capability asymmetry that is invisible until exploited.
Supply-chain risk in classical PKI infrastructure — HSMs, CA software, firmware — means a sovereign satellite-based root of trust is the only tamper-evident out-of-band distribution channel a government fully controls.
Harvest-now-decrypt-later attacks already in progress mean delay is not a neutral choice; every month without a sovereign migration channel is a month of retroactively decryptable national secrets.

Reference architecture

Payload: Sovereign PQC key-material broadcast payload: S-band downlink (2.0–2.3 GHz) for wide-area certificate and parameter distribution; onboard HSM module running CRYSTALS-Kyber-1024 KEM and CRYSTALS-Dilithium-3 signing at 512-bit security level; 10 Mbps encrypted downlink throughput per satellite
Bus class: 12U cubesat bus, 24 kg, 120W payload power; radiation-tolerant FPGA for onboard PQC operations; class-1 flash storage (256 GB) for rolling key-material archives
Orbit: Sun-synchronous LEO at 520–580 km; 18-satellite walker constellation at 97.5° inclination; worst-case revisit under 40 minutes globally, under 15 minutes at high-latitude government sites
Ground segment: Sovereign 4-station master ground network with HSM-secured key injection facilities; S-band TT&C at primary sites; air-gapped key-generation facility connected via hardened fibre to uplink stations; no commercial ground-station sharing for cryptographic operations
Software & data
Latency
Cost band
Lead time

References

NIST Post-Quantum Cryptography Standards (FIPS 203, 204, 205) — NIST finalised its first suite of post-quantum cryptographic algorithm standards in 2024, including CRYSTALS-Kyber for key encapsulation and CRYSTALS-Dilithium for digital signatures. These replace RSA and ECDH for long-term secure communications.
ESA — Quantum and Space: QKD and PQC Roadmap — ESA's quantum technologies programme investigates both QKD and post-quantum cryptography as complementary layers, noting that satellite infrastructure is critical for distributing quantum-safe credentials to mobile and remote users.
ENISA — Post-Quantum Cryptography: Current State and Quantum Mitigation — ENISA identifies harvest-now-decrypt-later as the primary near-term threat and recommends immediate crypto-agility frameworks, warning that migration timelines exceed a decade for large government networks.
ITU — Quantum Information Technology for Networks — ITU-T Study Group 17 is standardising interfaces between QKD networks and post-quantum cryptographic layers, explicitly addressing satellite-delivered key material as a resilience mechanism for member states.
CISA — Post-Quantum Cryptography Initiative — CISA's guidance calls on critical infrastructure owners to inventory all cryptographic dependencies and begin migration immediately, noting that foreign-controlled key distribution channels represent an unacceptable single point of failure.