Thales has become the first company globally to achieve high-level Common Criteria certification for a quantum-resistant smartcard, designed to protect sensitive government and citizen data against future quantum computing threats. The ‘MultiApp 5.2 Premium PQC’ smartcard, certified by the French Cybersecurity Agency (ANSSI), represents a significant step in post-quantum cryptography, offering enhanced security for digital identities such as ID cards, health cards, and driver’s licenses.

According to a Gartner report, conventional asymmetric cryptography is projected to become unsafe by 2029 due to advances in quantum computing, which can solve complex mathematical problems far faster than classical systems. Thales has invested in post-quantum cryptography to address this vulnerability, developing a smartcard that employs advanced digital signature algorithms to resist attacks from powerful quantum machines.

This innovative smartcard is the first of its kind to receive Common Criteria EAL 6+ certification, an international standard indicating very high security against sophisticated attacks, suitable for critical applications in government, finance, and defense. The certified product integrates new Digital Signature Algorithms, specifically FIPS 204, which have been standardized by the U.

S. National Institute of Standards and Technology (NIST). These algorithms are crucial for verifying data authenticity and integrity.

Franck Sadmi, Head of National Certification Center at ANSSI, noted, “This first certification for a solution incorporating post-quantum cryptography reflects ANSSI’s commitment to supporting innovation, while upholding the highest cybersecurity standards. The joint work of Thales, CEA-Leti IT Security Evaluation Facility, and ANSSI is a strong signal that Europe is ready to lead the way in post-quantum security, enabling organisations and governments to deploy solutions that anticipate future risks, rather than waiting for quantum computers to become mainstream.”

From an end-user perspective, the card operates as usual, but its internal technology incorporates a new generation cryptographic signature built to withstand the immense computing power of future quantum computers. This ensures long-term protection for sensitive personal data.

Nathalie Gosset, VP Identity & Biometric Solutions at Thales, stated, “This certification is a landmark moment not only for Thales but for the entire digital security ecosystem. It shows that future-proof cybersecurity is no longer a concept—it’s a reality. By achieving the highest level of security for a quantum-resistant smartcard, Thales is paving the way for trust in tomorrow’s civil identities. We’re proud to lead this crucial transformation.”

Thales, a global leader in advanced technologies for Defence, Aerospace, and Cyber & Digital sectors, invests over €4 billion annually in Research & Development across areas including Artificial Intelligence, cybersecurity, quantum, and cloud technologies. The company employs more than 83,000 individuals across 68 countries.