The French group Thales has just obtained the first high-level security certification for a smartcard resistant to quantum attacks. This is a major milestone toward protecting the digital identities of tomorrow.
While quantum computing promises to revolutionize high-performance computing, it also poses an unprecedented threat to global cybersecurity. The cryptographic algorithms currently protecting our transactions, identities, and data could soon become vulnerable. According to a Gartner report,
“By 2029, advances in quantum computing will make conventional asymmetric cryptography obsolete.”
In anticipation of this shift, Thales is taking the lead. The company has announced the launch of the “MultiApp 5.2 Premium PQC,” the first quantum-resistant smartcard in Europe to achieve security certification.
Granted by ANSSI (the French National Cybersecurity Agency), the EAL6+ certification under the Common Criteria framework confirms an exceptional level of protection. It is said to be equivalent to that required for the most critical systems.
Cryptography Ready for the Post-Quantum Age
This new generation of smartcards integrates post-quantum cryptographic (PQC) mechanisms based on digital signature algorithms standardized by the U.S. National Institute of Standards and Technology (NIST). These signatures ensure the authenticity and integrity of data, even against the exponential computing power of future quantum machines.
For end users, nothing changes. An electronic ID card, health card, or driver’s license incorporating this technology will function as it does today. But behind the chip, the cryptographic core has been completely redesigned to ensure long-term protection of personal data.
“This first certification for a solution integrating post-quantum cryptography reflects ANSSI’s commitment to supporting innovation while maintaining the highest cybersecurity standards. It marks a key step toward a Europe ready for the post-quantum era,” said Franck Sadmi, Head of the National Certification Center at ANSSI.
A Strategic Milestone for Europe’s Digital Sovereignty
Developed in collaboration with the CEA-Leti IT Security Evaluation Facility, this smartcard is part of a broader European strategy to anticipate future risks posed by quantum computing. By obtaining this certification, Thales becomes the first player to demonstrate the industrial viability of a certified post-quantum security solution at the highest level.
“This milestone is not just about Thales—it concerns the entire digital security ecosystem. ‘Quantum-ready’ cybersecurity is no longer a concept; it’s a reality. We are paving the way for a new generation of secure civil identities,” said Nathalie Gosset, VP Identity & Biometric Solutions at Thales.
Toward Trusted Digital Identities for the Future
As European governments accelerate their digital identity initiatives, the availability of certified post-quantum solutions represents a strategic advantage. By combining cryptographic innovation with sovereign certification, Thales strengthens trust in identity infrastructures and positions Europe as a leader in post-quantum security.
Read also