Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

Commvault: Harvest Now, Decrypt Later: Why Quantum Threats Are Real

Commvault
07/13/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


from theory and maybe some isolated cases to like it's happening and people are reporting on it, right? So the threat of Harvest Now Decrypt Later is absolutely real. We're seeing reports of adversaries doing this now. So the ticking time bomb analogy is probably quite accurate. One of the other things that I think is capturing a lot of the news cycle is recently Google had published that the initial theories about when ECC would get cracked is greatly accelerated from the initial time. So that's where I think that collapsing of the timeline, we're seeing that kind of also playing out. And what's interesting about that is, although that's directly related to like the qubits, and if you start to do some fuzzy math, it still feels like 10 years out, but it doesn't take into consideration like any type of algorithmic improvements and things of that nature. So I think as all of those things kind of come together, it creates this perfect storm. Now in the meantime, that's kind of on the quantum and the algorithm side. You still have regulations, you still got NIST kind of doing their thing. You got FIPS 1.4 being sunset. So like you have all of these things kind of coming from all these different angles causing that pressure. And when you think about the three-year timeline, we're going to start to see the certificate rotation thing come into play. You're going to see this requirement for FIPS 140-3 coming in. You're going to see NIST making greater recommendations on how you're going to have newer algorithms to be quantum resistant. So organizations are going to have to start putting the pedal to the metal and really figuring out like how they're going to get this to be deployed across their entire estate. And I always talk about like the discovery aspect, like they're going to have to get a move on on that because this is not an overnight flip the switch type of thing.

TL;DR

  • Harvest Now, Decrypt Later attacks are no longer theoretical — adversaries are actively collecting encrypted data today for future quantum decryption.
  • Google's recent research suggests timelines for breaking ECC are accelerating, and algorithmic improvements could compress the window further.
  • Regulatory pressure from FIPS 140-3 requirements and NIST post-quantum standards is converging with quantum risk to create immediate urgency for organizations.

Summary

In this short clip from Commvault's STRIVE series, Michael Fasulo explains why Harvest Now, Decrypt Later (HNDL) has crossed from theoretical concern into active threat. Adversaries are already collecting encrypted data today with the intent to decrypt it once quantum computing capabilities mature — and recent research from Google suggests the timeline for breaking elliptic curve cryptography (ECC) is accelerating faster than initial estimates. Fasulo notes that while qubit-based projections might still suggest a decade-long runway, those calculations don't account for algorithmic improvements that could compress the window significantly. Compounding the urgency, regulatory pressure is mounting from multiple directions simultaneously: FIPS 140-2 is being sunset in favor of FIPS 140-3, NIST is formalizing post-quantum cryptographic standards, and certificate rotation requirements are expected within a three-year horizon. Organizations cannot treat quantum readiness as a future project — cryptographic discovery across the entire technology estate must begin immediately, as transitioning to quantum-resistant algorithms is a multi-year undertaking that cannot be executed overnight.

Chapters

0:00 - HNDL Moves from Theory to Reality
0:22 - Accelerating Quantum Timelines
1:01 - Regulatory and Standards Pressure
1:35 - Cryptographic Discovery as First Step

Key Quotes

0:10 "The threat of Harvest Now Decrypt Later is absolutely real. We're seeing reports of adversaries doing this now."
0:27 "Google had published that the initial theories about when ECC would get cracked is greatly accelerated from the initial time."
0:45 "It still feels like 10 years out, but it doesn't take into consideration like any type of algorithmic improvements and things of that nature."
1:35 "Organizations are going to have to start putting the pedal to the metal and really figuring out like how they're going to get this to be deployed across their entire estate."

FAQ

What is Harvest Now, Decrypt Later and why is it a current threat?

HNDL is a strategy where attackers collect encrypted data today and store it until quantum computers can break the encryption. It is a current threat because adversaries are already executing this approach, meaning data stolen now could be exposed years from now when quantum capabilities mature.

What is the first step organizations should take toward quantum readiness?

Cryptographic discovery — organizations must first understand where cryptography is being used across their entire environment before they can begin migrating to quantum-resistant algorithms. This process alone takes significant time and cannot be skipped.


Categories:
  • » Webinar Library » Commvault
  • » Data Protection » Backup & Recovery
  • » Data Protection
Channels:
News:
Events:
Tags:
  • Data Protection
  • Compliance & Governance
  • Threat Intelligence
  • Security Operations
  • Executive Briefing
  • webinar_clip
  • Harvest Now Decrypt Later
  • Post-quantum cryptography
  • Quantum computing threats
  • FIPS 140-3 compliance
  • NIST post-quantum standards
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: Commvault: Harvest Now, Decrypt Later: Why Quantum Threats Are Real

              Upcoming Webinar Calendar

              • 07/14/2026
                01:00 PM
                07/14/2026
                Crafting a Championship-Caliber Security Team for Lasting Defense
                https://www.truthinit.com/index.php/channel/2025/crafting-a-championship-caliber-security-team-for-lasting-defense/
              • 07/14/2026
                02:00 PM
                07/14/2026
                Understanding the Crucial Role of Context in Safeguarding AI-Accessible Data
                https://www.truthinit.com/index.php/channel/2037/understanding-the-crucial-role-of-context-in-safeguarding-ai-accessible-data/
              • 07/21/2026
                04:00 AM
                07/21/2026
                Strategies for Managing AI Governance and Securing App-to-LLM API Traffic
                https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
              • 07/22/2026
                06:30 AM
                07/22/2026
                Insights and Strategies in Data Protection and Privacy Management
                https://www.truthinit.com/index.php/channel/2000/insights-and-strategies-in-data-protection-and-privacy-management/
              • 07/22/2026
                01:00 PM
                07/22/2026
                Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue
                https://www.truthinit.com/index.php/channel/2029/insights-from-attackers-during-the-fifa-world-cup-a-human-dialogue/
              • 07/28/2026
                01:00 PM
                07/28/2026
                Illumio + Netskope: Zero Trust in the Age of AI Autonomy
                https://www.truthinit.com/index.php/channel/2031/illumio-netskope-zero-trust-in-the-age-of-ai-autonomy/
              • 07/29/2026
                04:00 AM
                07/29/2026
                Real-Time Strategies for Safeguarding Against Prompt Injections
                https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
              • 07/29/2026
                12:00 PM
                07/29/2026
                Unified Data Security in Action: Uncover, Analyze, and Resolve Threats
                https://www.truthinit.com/index.php/channel/2045/unified-data-security-in-action-uncover-analyze-and-resolve-threats/
              • 07/29/2026
                01:00 PM
                07/29/2026
                Ask Your Cloud Anything: Unlocking Governance Silos in your Environments
                https://www.truthinit.com/index.php/channel/2048/ask-your-cloud-anything-unlocking-governance-silos-in-your-environments/
              • 08/19/2026
                12:00 PM
                08/19/2026
                Becoming Agent Ready: Insights from Cyera's Expertise
                https://www.truthinit.com/index.php/channel/2036/becoming-agent-ready-insights-from-cyeras-expertise/
              • 09/30/2026
                04:00 AM
                09/30/2026
                AI Command Center: Optimizing Visibility and Control in Your Operations
                https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/

              Upcoming Events

              • Jul
                14

                Crafting a Championship-Caliber Security Team for Lasting Defense

                07/14/202601:00 PM ET
                • Jul
                  14

                  Understanding the Crucial Role of Context in Safeguarding AI-Accessible Data

                  07/14/202602:00 PM ET
                  • Jul
                    21

                    Strategies for Managing AI Governance and Securing App-to-LLM API Traffic

                    07/21/202604:00 AM ET
                    • Jul
                      22

                      Insights and Strategies in Data Protection and Privacy Management

                      07/22/202606:30 AM ET
                      • Jul
                        22

                        Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue

                        07/22/202601:00 PM ET
                        More events
                        Truth in IT
                        • Sponsor
                        • About Us
                        • Terms of Service
                        • Privacy Policy
                        • Contact Us
                        • Preference Management
                        Desktop version
                        Standard version