BIS and Central Banks to Address Cyber Threats from Quantum Computing

Project Leap overview

In June, the BIS Innovation Hub Eurosystem Center and the central banks of France and Germany announced the successful completion of their experiment under Project Leap. To prepare central banks and the global financial system for a transition toward quantum-resistant encryption, the Project Leap is investigating how to update and replace the cryptographic security algorithms that the financial system critically relies on. In this context, BIS has published a Project Leap report that presents a comprehensive overview of the experiments conducted and the initial technical findings that can help guide the global transition toward new cryptographic protocols. This project involved transmitting test payment messages via this quantum-resistant Virtual Private Network (VPN) tunnel between servers located in Paris and Frankfurt, thereby demonstrating how critical financial data can be protected. The success of this experiment paves the way for the BIS Innovation Hub Eurosystem Center and its partners to build a complete chain of trust for central bank applications in the post-quantum world, acting as a blueprint for the financial system.

Success and next steps

Project Leap has demonstrated that applying post-quantum protocols is already feasible. Hence, it is already possible to start the migration process. Central banks need to allow for a transition phase in their cybersecurity roadmaps so that they are prepared once the final standards are published. Project Leap addresses some of the specific challenges of implementing quantum-resistant information technology (IT) environments for the financial system, with a view to preparing for this transition and accelerating it. Project Leap showed that, for a VPN, there is no significant impact on performance. Nevertheless, for applications where performance is critical, such as instant payment applications or central bank digital currency (CBDC) systems, a trade-off between security and performance will be necessary. Future work could include testing post­-quantum cryptography in a more complex environment, addressing more central banking use cases to secure communications between central banks and other institutions.

By providing insights and technical findings, the report on Project Leap paves the way for future cooperation among central banks on post-quantum cryptographic protocols. Additional central bank use cases will be explored in a subsequent phase of the project, with the overall aim of contributing to quantum-proofing the financial system. Hence, the second phase will onboard more than two central banks to investigate more complex IT environments in preparation for real-world contexts. A new report will be published giving direction on the specificities of central bank systems in order to facilitate migration plans to quantum-safe environments.

Click here to find out more about Moody’s expertise in quantum computing and let's make the Quantum Leap together. At Moody’s Analytics, we are focused on innovation to better serve our customers and enable them to make decisions even faster than before. We are excited to announce a quantum leap forward with our exploration of quantum computing, which promises extensive improvements for computationally expensive problems that could impact on some of the core problems our clients face.

Related Links

• Press Release and Report on Project Leap

• Moody's Quantum Survey Report