Quantum computing is fast approaching, and securing next-gen networks has never been more urgent. At Thales, we’re shaping a cybersecurity future where Post-Quantum Cryptography (PQC) isn’t just a safeguard, it’s a strategic advantage.
Through the NANCY project, we’re fortifying wireless infrastructures, like Blockchain-Radio Access Networks (B-RAN), to ensure they remain agile, attack-resilient, and quantum-resistant in the 5G and 6G era. In this interview, our own Jean-Paul Truong talks through the project in more detail, and highlights Thales’ involvement.
What are the objectives with the NANCY project?
Leveraging the combined expertise of a consortium of public and private sector organisations, the NANCY project aims to build and introduce a post-quantum secure architecture for wireless mobile data networks that are beyond the fifth generation (B5G).
As quantum computing continues to advance, traditional cryptographic methods such as RSA and ECC are becoming vulnerable, necessitating a future-proof security framework to protect the vast amounts of sensitive data transmitted over next-generation wireless infrastructures. The NANCY project is tackling this challenge by integrating Post-Quantum Cryptography (PQC) solutions into the core architecture of B5G networks. This involves designing security mechanisms that can withstand quantum attacks while enhancing the resilience of network infrastructure.
Additionally, NANCY explores Blockchain-Radio Access Networks (B-RAN) as a way to optimise resource allocation and decentralise security processes within mobile networks. By shifting caching and computing resources from the remote cloud to the network edge, B-RAN enables faster processing, improved efficiency, and a more secure framework resistant to emerging cyber threats.
Can you provide an overview of Thales’ involvement with the NANCY project?
Thales is leading efforts to fortify wireless infrastructure through PQC, ensuring that B5G networks are agile, attack-resistant, and future-proof against quantum threats. This work is critical for both the 5G and 6G era, where data flows nonstop, and trust must be instantaneous.
To achieve this, Thales is implementing and validating NIST-standardised algorithms, including FIPS-203 (Key-Encapsulation Mechanism) and FIPS-204 (Digital Signature Standard), on secure hardware. Additionally, Thales is proactively shaping industry standards by submitting new cryptographic signature candidates, VOX and PROV, through NIST’s “On-Ramp” process, ensuring a diverse and adaptable range of quantum-safe solutions.
What are the specific challenges and opportunities Thales has identified?
Thales has demonstrated that Post-Quantum Cryptography can function effectively on constrained hardware, successfully implementing PQC on 32-bit smartcard CPUs with as little as 24kB RAM. Our middleware and low-level optimisations bring ML-DSA into the real world, enabling fast, secure identity verification that resists both classical and quantum threats. This proves that quantum-resilient security can operate in lean environments, which is critical for IoT, mobile devices, and edge computing.
PQC without interoperability is a dead-end and so Thales are helping to build standards. From ISO/IEC 7816 extensions for secure elements, to JavaCard and GlobalPlatform PQC integration, Thales ensures quantum-safe cryptography can scale across platforms, industries, and borders; all of which are aligned with NIST’s FIPS 204.
Thales is also a key player in the NANCY Italian Massive IoT Testbed, which is testing real-world post-quantum secure communication protocols on live 5G infrastructure. This work will be essential for protecting sensitive data across smart cities, healthcare, transportation, and other industries as quantum computing advances.
Can you highlight some progress that has already been made by Thales on the NANCY project?
Thales has made significant strides in building pathways for quantum-safe cryptography, validating dual-stack models that allow for a secure migration from pre-quantum to post-quantum encryption.
Recognising that quantum computing will soon break traditional cryptographic methods like RSA and ECC, Thales is actively developing next-generation security solutions that will safeguard platforms, industries, and entire national infrastructures against emerging threats.
Additionally, Thales has applied the Joint Interpretation Library (JIL), a globally recognised cybersecurity scoring system, to rigorously evaluate how hardware-based security solutions, such as smartcards, withstand advanced attacks, ensuring they remain effective in the face of quantum advancements.
How is Thales preparing for the quantum era?
At Thales, we’re not just preparing for the quantum era, we’re building it. From secure elements to national networks, our work in the NANCY project is setting the pace for post-quantum cybersecurity in Europe and beyond.
Whether it’s fortifying blockchain, hardening smartcards, or securing 5G networks, our message is clear: Quantum resilience isn’t optional, it’s mission-critical. And with NANCY, we’re proving it’s achievable.
