H.R. 7535 · 117th Congress · House

Quantum Computing Cybersecurity Preparedness Act

Enacted· Became Public Law No: 117-260.
Introduced
Apr 18, 22
Passed House
Jul 12, 22
Passed Senate
Dec 8, 22
Sent to President
Dec 16, 22
Signed into Law
Dec 21, 22

Executive Summary

Quantum Computing Cybersecurity Preparedness Act

This act addresses the migration of executive agencies' information technology systems to post-quantum cryptography. Post-quantum cryptography is encryption strong enough to resist attacks from quantum computers developed in the future. The act does not apply to national security systems.

The Office of Management and Budget (OMB) shall issue guidance on the migration of information technology to post-quantum cryptography.

Each executive agency must maintain an inventory of all information technology in use by the executive agency that is vulnerable to decryption by quantum computers.

After the National Institutes of Standards and Technology (NIST) has issued post-quantum cryptography standards, the OMB shall issue guidance requiring each executive agency to develop a plan to migrate information technology of the agency to post-quantum cryptography.

OMB shall submit to Congress a report on

  • a strategy to address the risk posed by the vulnerabilities of information technology of executive agencies to weakened encryption due to the potential and possible capability of a quantum computer to breach such encryption;
  • the funding needed by executive agencies to secure such information technology from the risk posed by an adversary of the United States using a quantum computer to breach the encryption; and
  • a description of federal civilian executive branch coordination efforts led by NIST, including timelines, to develop standards for post-quantum cryptography.

Previous Versions

55Dec 8, 2022

Quantum Computing Cybersecurity Preparedness Act

This bill addresses the migration of executive agencies' information technology systems to post-quantum cryptography. Post-quantum cryptography is encryption strong enough to resist attacks from quantum computers developed in the future. The bill does not apply to national security systems.

The Office of Management and Budget (OMB) shall issue guidance on the migration of information technology to post-quantum cryptography.

Each executive agency must maintain an inventory of all information technology in use by the executive agency that is vulnerable to decryption by quantum computers.

After the National Institutes of Standards and Technology (NIST) has issued post-quantum cryptography standards, the OMB shall issue guidance requiring each executive agency to develop a plan to migrate information technology of the agency to post-quantum cryptography.

OMB shall submit to Congress a report on

  • a strategy to address the risk posed by the vulnerabilities of information technology of executive agencies to weakened encryption due to the potential and possible capability of a quantum computer to breach such encryption;
  • the funding needed by executive agencies to secure such information technology from the risk posed by an adversary of the United States using a quantum computer to breach the encryption; and
  • a description of federal civilian executive branch coordination efforts led by NIST, including timelines, to develop standards for post-quantum cryptography.
53Jul 12, 2022

Quantum Computing Cybersecurity Preparedness Act

This bill addresses the migration of executive agencies' information technology systems to post-quantum cryptography. Post-quantum cryptography is encryption strong enough to resist attacks from quantum computers developed in the future.

The Office of Management and Budget (OMB) shall establish a requirement for each executive agency to establish and maintain an inventory of each cryptographic system in use by the agency.

Each executive agency must provide to the OMB, the Cyber and Infrastructure Security Agency, and the Office of the National Cyber Director an inventory of all information technology in use by the executive agency that is vulnerable to decryption by quantum computers.

After the National Institutes of Standards and Technology (NIST) has issued post-quantum cryptography standards, the OMB shall issue guidance requiring each executive agency to develop a plan to migrate information technology of the agency to post-quantum cryptography.

OMB shall submit to Congress a report on

  • a strategy to address the risk posed by the vulnerabilities of information technology systems of executive agencies to weakened encryption due to the potential and possible capability of a quantum computer to breach such encryption;
  • the funding needed by executive agencies to secure such information technology systems from the risk posed by an adversary of the United States using a quantum computer to breach the encryption of information technology systems; and
  • a description of federal civilian executive branch coordination efforts led by NIST, including timelines, to develop standards for post-quantum cryptography.
00Apr 18, 2022

Quantum Computing Cybersecurity Preparedness Act

This bill addresses the migration of executive agencies information technology systems to post-quantum cryptography. Post-quantum cryptography is encryption strong enough to resist attacks from quantum computers developed in the future.

Not later than one year after the National Institutes of Standards and Technology (NIST) has issued post-quantum cryptography standards, the Office of Management and Budget (OMB) shall begin to prioritize the migration of agency information technology systems to post-quantum cryptography.

Not later than one year after the date of the enactment of this bill, the OMB shall submit to Congress a report on

  • a strategy to address the risk posed by the vulnerabilities of agency information technology systems to the potential capability of a quantum computer;
  • the funding necessary to secure such information technology systems from the threat posed by adversarial access to quantum computers; and
  • a description and analysis of ongoing coordination efforts with international standards development organizations and consortia to develop standards for post-quantum cryptography, including any federal Information Processing Standards.

Action Timeline

30
  1. DEC 21, 2022BecameLaw

    Signed by President.

  2. DEC 21, 2022President

    Signed by President.

  3. DEC 21, 2022BecameLaw

    Became Public Law No: 117-260.

    117Yea
    260Nay
    0NV
  4. DEC 21, 2022President

    Became Public Law No: 117-260.

    117Yea
    260Nay
    0NV
  5. DEC 16, 2022President

    Presented to President.

  6. DEC 16, 2022Floor

    Presented to President.

  7. DEC 13, 2022NotUsed

    Resolving differences -- House actions

    Roll Call #519

    On motion that the House suspend the rules and agree to the Senate amendment Agreed to by the Yeas and Nays: (2/3 required): 420 - 3 (Roll no. 519).

    420Yea
    3Nay
    0NV
  8. DEC 13, 2022ResolvingDifferences

    On motion that the House suspend the rules and agree to the Senate amendment Agreed to by the Yeas and Nays: (2/3 required): 420 - 3 (Roll no. 519). (consideration: CR H9717-9718; text: 12/12/2022 CR H9659-9660)

    Roll Call #519
    420Yea
    3Nay
    0NV
  9. DEC 13, 2022ResolvingDifferences

    Motion to reconsider laid on the table Agreed to without objection.

  10. DEC 12, 2022ResolvingDifferences

    Ms

    Norton moved that the House suspend the rules and agree to the Senate amendment. (consideration: CR H9659-9661)

    9659Yea
    9661Nay
    0NV
  11. DEC 12, 2022Floor

    The House proceeded with forty minutes of debate on the motion to suspend the rules and agree to the Senate amendment to H.R. 7535.

  12. DEC 12, 2022Floor

    At the conclusion of debate, the Yeas and Nays were demanded and ordered

    Pursuant to the provisions of clause 8, rule XX, the Chair announced that further proceedings on the motion would be postponed.

  13. DEC 09, 2022Floor

    Message on Senate action sent to the House.

  14. DEC 08, 2022Committee

    Senate Committee on Homeland Security and Governmental Affairs discharged by Unanimous Consent.

  15. DEC 08, 2022Discharge

    Senate Committee on Homeland Security and Governmental Affairs discharged by Unanimous Consent.

  16. DEC 08, 2022Floor

    Measure laid before Senate by unanimous consent

    (consideration: CR S7084-7085)

    7084Yea
    7085Nay
    0NV
  17. DEC 08, 2022Floor

    Passed/agreed to in Senate

    Passed Senate with an amendment by Unanimous Consent.(text of amendment in the nature of a substitute: CR S7084-7085)

    7084Yea
    7085Nay
    0NV
  18. DEC 08, 2022Floor

    Passed Senate with an amendment by Unanimous Consent

    (text of amendment in the nature of a substitute: CR S7084-7085)

    7084Yea
    7085Nay
    0NV
  19. JUL 13, 2022IntroReferral

    Received in the Senate and Read twice and referred to the Committee on Homeland Security and Governmental Affairs.

  20. JUL 12, 2022Floor

    Mrs

    Maloney, Carolyn B. moved to suspend the rules and pass the bill, as amended.

  21. JUL 12, 2022Floor

    Considered under suspension of the rules

    (consideration: CR H5952-5955)

    5952Yea
    5955Nay
    0NV
  22. JUL 12, 2022Floor

    DEBATE - The House proceeded with forty minutes of debate on H.R. 7535.

  23. JUL 12, 2022Floor

    Passed/agreed to in House

    On motion to suspend the rules and pass the bill, as amended Agreed to by voice vote.

  24. JUL 12, 2022Floor

    On motion to suspend the rules and pass the bill, as amended Agreed to by voice vote. (text: CR H5952-5953)

    5952Yea
    5953Nay
    0NV
  25. JUL 12, 2022Floor

    Motion to reconsider laid on the table Agreed to without objection.

  26. MAY 11, 2022Committee

    Committee Consideration and Mark-up Session Held.

  27. MAY 11, 2022Committee

    Ordered to be Reported by the Yeas and Nays: 38 - 0.

    38Yea
    0Nay
    0NV
  28. APR 18, 2022IntroReferral

    Introduced in House

  29. APR 18, 2022IntroReferral

    Introduced in House

  30. APR 18, 2022IntroReferral

    Referred to the House Committee on Oversight and Reform.

Committees

4

Homeland Security and Governmental Affairs Committee

ssga00

Referred: Dec 8, 2022

Active

Homeland Security and Governmental Affairs Committee

ssga00

Referred: Jul 13, 2022

Active

Oversight and Government Reform Committee

hsgo00

Referred: May 11, 2022

Active

Oversight and Government Reform Committee

hsgo00

Referred: Apr 18, 2022

Active