At Nacha event Smarter Faster Payments 2025 in New Orleans, a weekend panel session explored how financial institutions must establish an internal risk committee that assesses and mitigates future quantum-related threats.<\/p>\n
Editorial<\/p>\n
This content has been selected, created and edited by the Finextra editorial team based upon its relevance and interest to our community.<\/p>\n
John Buselli, offering manager \u2013 IBM security research, IBM, along with Namit Agrawal, partner and US leader, IBM payments centre, IBM Consulting, and John Brady, head of engineering and chief architect, BillGo, highlighted that current cryptographic tools, which take up to a million years to break, could be compromised by quantum computers in five to 10 years.<\/p>\n
They emphasised the need for a roadmap to transition to quantum-resistant algorithms, starting with creating an inventory of critical assets and assessing vulnerabilities. Key algorithms like Shor’s and Grover’s were discussed for their potential to break encryption and accelerate fraud detection.<\/p>\n
With the knowledge that cryptographic methods can be compromised, the financial services industry must also come to terms with the urgent need for quantum-safe cryptography, which involves developing algorithms that are resistant to quantum attacks. In order to keep the ACH network safe, cryptographic methods must be updated, and operational rules, strengthened.<\/p>\n
Buselli mentioned that the onset of quantum threats will be \u201cdifficult to detect, purposeful, it won\u2019t be dramatic but it will be concerning in that regard.\u201d He went on to say that \u201call data that\u2019s not quantum state today, if it were to be exfiltrated at some point in the future by a bad actor, they could unravel that data.\u201d<\/p>\n
He added: \u201cThis is a complex supply chain that has to be transformed. Everyone has a collective role in this together. That\u2019s really where the safety is going to come from, and you\u2019re only going to migrate as quickly as your least secure defence.\u201d Quantum computers can break current encryption keys much faster than classical computers, so banks will need to revisit and rebuild payment systems to account for quantum computing threats.<\/p>\n
Brady explored the various stages of payment processing, the vulnerabilities introduced by quantum computing, how digital identities can be hacked and synthetic identities can be introduced, leading to account takeovers and manipulation of payment transactions. Beyond payments origination, risks can also emerge in payment transmission, where systems can be intercepted and data manipulated. Further, within payments processing, clearing, and settlement, malicious users could change ledger values.<\/p>\n
\u201cIn that sense, the integrity, the security and the risk of quantum that we are talking about today has to be understood by each and every individual in the value chain. [\u2026] Today, we do have quantum computers that are already at an experimental stage. They are able to generate various algorithms and capabilities.<\/p>\n
\u201cHowever, those quantum computers do not have, currently the compute or the error correction, or in this case, accuracy, in which they can break these algorithms. We are probably another five to 10 years away from quantum computers getting to a point where they could become powerful enough to break encryption keys.\u201d<\/p>\n","protected":false},"excerpt":{"rendered":"At Nacha event Smarter Faster Payments 2025 in New Orleans, a weekend panel session explored how financial institutions…\n","protected":false},"author":2,"featured_media":57499,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3164],"tags":[3670,3427,3210,3674,51,3678,3284,3677,3676,3671,474,3240,3668,3672,13,3680,1197,3673,2998,547,12,3669,3209,3679,363,1199,326,53,1201,3675,16,15],"class_list":{"0":"post-57498","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-computing","8":"tag-bank","9":"tag-banking","10":"tag-blockchain","11":"tag-breaking","12":"tag-business","13":"tag-challenger","14":"tag-computing","15":"tag-digital","16":"tag-execution","17":"tag-fin","18":"tag-finance","19":"tag-financial","20":"tag-finextra","21":"tag-fintech","22":"tag-headlines","23":"tag-insurtech","24":"tag-investment","25":"tag-it","26":"tag-latest","27":"tag-mobile","28":"tag-news","29":"tag-online","30":"tag-payments","31":"tag-regtech","32":"tag-retail","33":"tag-services","34":"tag-tech","35":"tag-technology","36":"tag-trade","37":"tag-transaction","38":"tag-uk","39":"tag-united-kingdom"},"share_on_mastodon":{"url":"","error":""},"_links":{"self":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/posts\/57498","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/comments?post=57498"}],"version-history":[{"count":0,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/posts\/57498\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/media\/57499"}],"wp:attachment":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/media?parent=57498"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/categories?post=57498"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/tags?post=57498"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}