The transition from RSA and ECC to lattice-based cryptography is the largest forced retooling of digital infrastructure since the move from physical to cloud. Unlike most security upgrades, this one comes with a fixed regulatory clock. NIST finalized the first three post-quantum cryptographic standards on August 14, 2024, and by January 1, 2027, all new US National Security System acquisitions must be compliant with CNSA 2.0, the NSA's post-quantum algorithm suite, with full mandatory compliance across most NSS system types required by 2033. The European Commission has set an analogous milestone: a coordinated quantum-safe roadmap endorsed by 18 EU states fixes 2030 as the final compliance deadline for critical infrastructure. For LPs, the relevant question is not whether the migration happens, but who captures the multi-year services and software annuity it generates.

Three Forces Are Shaping the Entry Point

The mandate is now hard, and it cascades. CNSA 2.0 binds federal agencies and contractors directly, but the procurement language that flows downstream is what determines actual capex. Federal supply-chain pressure functionally extends the deadline to defense suppliers, regulated banks, telecom carriers, and major cloud tenants. A full PQC migration takes two to five years for most organizations, and the mathematical conclusion is that those starting now in 2026 are on the outer edge of a responsible timeline. NIST's transition plan explicitly targets widespread PQC adoption by 2035, with classical 112-bit-security public-key schemes being deprecated rather than simply disallowed during the transition. Enterprises that delay are not deferring cost — they are compounding it.

The "Harvest Now, Decrypt Later" Threat

Long-lived secrets — diplomatic cables, healthcare records, IP filings, financial settlement keys — must be re-encrypted before a cryptographically relevant quantum computer exists, not after. In February 2026, Google publicly called on governments and industry to "prepare now" for quantum-era cybersecurity, citing accelerating quantum computing breakthroughs that are compressing the timeline, and Boston Consulting Group has warned that "starting in 2030 will already be too late." The asymmetry favors the defender only if the migration begins ahead of the threat.

The Vendor Landscape Is Bifurcating

SandboxAQ, spun out of Alphabet, has raised over $1 billion and offers AQtive Guard for enterprise cryptographic discovery and migration; PQShield, which has raised over $63 million, supplies hardware and software PQC IP to semiconductor vendors and government agencies. SandboxAQ secured a five-year US Department of Defense production contract in December 2025 following a successful DISA pilot. On the incumbent side, Thales, Entrust, and Utimaco are translating certification expertise into updated HSM lines for regulated industries; AWS, Microsoft Azure, and Google Cloud are integrating FIPS-203/204 primitives natively. The structural pattern is familiar from past compliance cycles: the operational layer — discovery, inventory, sequencing, governance — is where annuity revenue accrues, and is currently the most under-built segment.

Asia Is Moving in Parallel

China's national quantum strategy funds both computing hardware and quantum-resistant cryptography; Japan's NEDO initiative dedicates $15 million to post-quantum pilots across finance and manufacturing in partnership with PQShield; Singapore's financial-hub status draws regional banks into early migration programs; and South Korea is seeding research grants to integrate quantum-safe protocols into 6G base-station silicon. Asia Pacific is forecast to be the fastest-growing PQC region, with a projected 44.83% CAGR through 2033.

Market Sizing and Investment Thesis

For institutional allocators, sizing requires care. Pure-play PQC software and hardware market estimates diverge by an order of magnitude — Grand View projects $7.82 billion by 2030, while Precedence Research projects roughly $30 billion by 2034. The $50 billion figure that frames the broader migration captures the full enterprise envelope: software, hardware HSMs, certificate lifecycle tooling, and the consulting and integration services that historically dominate compliance-driven cycles. The risks deserve equal weight: legacy banking cores, healthcare EMRs, and SCADA platforms embed cryptographic routines deep inside business logic, making rip-and-replace infeasible and partial upgrades prone to interoperability failures; vendor consolidation is likely to accelerate as certification thins the field; and crypto-agility — not any single algorithm — is the durable architectural choice.

The Investment Opportunity

The investment thesis is straightforward in shape. The migration is mandated, the threat is asymmetric, and the buyer base — federal contractors, regulated finance, telecom, healthcare — is among the least price-sensitive in technology procurement. 2026 is the inflection because the standards are final, the deadlines are scheduled, and enterprise budgets are being approved. The opportunity is in identifying which platforms become embedded in the migration workflow and which firms own the cryptographic discovery and certificate lifecycle layers. By the time pure-play valuations re-rate, that question will already have been answered.