NIST Finalizes Post-Quantum Cryptography Migration Timeline for Federal Agencies

The National Institute of Standards and Technology (NIST) has published its final guidance document (SP 800-227) establishing a detailed timeline for all US federal agencies to complete migration from classical to post-quantum cryptographic standards by December 31, 2030.

The guidance categorizes federal systems into three tiers based on sensitivity and exposure. Tier 1 systems (classified and national security) must begin migration by June 2026. Tier 2 systems (sensitive unclassified, financial, PII) must begin by December 2026. Tier 3 systems (general purpose) must begin by June 2027.

Approved algorithms for migration include ML-KEM (key encapsulation), ML-DSA (digital signatures), and SLH-DSA (hash-based signatures), all finalized as FIPS standards in 2024. The guidance mandates hybrid deployments combining post-quantum and classical algorithms during the transition period.

NIST estimates the total cost of the government-wide cryptographic migration at $7.4 billion over five years. Congress has allocated $1.2 billion in the FY2026 budget for the initial phase, with additional funding expected in subsequent appropriations.

Private sector organizations, while not mandated, are strongly encouraged to follow the same timeline. Several major banks and healthcare organizations have already begun their post-quantum migration programs, citing regulatory expectations and customer data protection obligations.