Industry Conversation

Quantum Security in the Connected Vehicle: The Migration Decisions Automotive Security Leaders Cannot Defer

Connected vehicle architectures depend on cryptographic protocols for V2X communication, OTA update integrity, and supply chain provenance. The algorithms underpinning those protocols (RSA, ECC, and ECDSA) have confirmed expiry dates under current CRQC resource estimates. Automotive product lifecycles of 15-20 years mean vehicles being designed today will be in the field when those estimates materialise. This conversation is for the CISOs and CTOs who have to make that calculation work in a supply chain they do not fully control.

Roundtable Expert Member access Chatham House Rule

Event Details

Who else is in the room
Senior level executive peers, industry leaders, experts in risk, technology and business. Specifically: CISOs, CTOs, and security leaders at vehicle manufacturers, Tier 1 automotive suppliers, and connected mobility technology providers.
Access
Members only. Bundled with Expert Membership. Included with Expert Member tier
Sponsor
Organised by QSECDEF
Facilitator
Anna Beata Kalisz Hedegaard, Quantum Security Defence
Anna Beata Kalisz Hedegaard Quantum Security Defence
Rules of engagement
Chatham House Rule Chatham House Rule. Discussion is on the record; attribution is not. Participants may share what was said but not who said it.
Format
Roundtable Flexible between roundtable, structured Q&A or in-person hosted dinner
Who Should Join
This conversation is for CISOs and CTOs at vehicle manufacturers, Tier 1 suppliers, and automotive technology providers where cryptographic security is a live engineering and governance concern. It is relevant to executives at connected mobility platforms and fleet operators with large V2X footprints. It is not for the broader automotive industry without a direct cryptographic security mandate. Participants are expected to have an active interest in V2X or OTA security at a technical and strategic level.

Proud to recommend our expert members

Qrypto Cyber
Eclypses
Arqit
QuantBond
Krown
Applied Quantum
Quantum Bitcoin
Venari Security
QuStream
BHO Legal
Census
QSP
IONQ - ID Quantique
Patero
Entopya
Belden
Atlant3D
Zenith Studio
Qudef
Aries Partners
GQI
Upperside Conferences
Austrade
Arrise Innovations
CyberRST
Triarii Research
QSysteme
WizzWang
DeepTech DAO
Xyberteq
Viavi
Entrust
Qsentinel
Nokia
Gopher Security
Quside
QIZ
Global Quantum Intelligence
Qrypto Cyber
Eclypses
Arqit
QuantBond
Krown
Applied Quantum
Quantum Bitcoin
Venari Security
QuStream
BHO Legal
Census
QSP
IONQ - ID Quantique
Patero
Entopya
Belden
Atlant3D
Zenith Studio
Qudef
Aries Partners
GQI
Upperside Conferences
Austrade
Arrise Innovations
CyberRST
Triarii Research
QSysteme
WizzWang
DeepTech DAO
Xyberteq
Viavi
Entrust
Qsentinel
Nokia
Gopher Security
Quside
QIZ
Global Quantum Intelligence

About This Conversation

Why this matters now

UNECE WP.29 Regulation R155 on vehicle cybersecurity entered into force for new type approvals in July 2022, requiring manufacturers to implement cybersecurity management systems. NIST's August 2024 finalisation of FIPS 203, 204, and 205 created the standards baseline for PQC migration, though automotive-specific cryptographic standards are still maturing. Vehicles using V2X protocols (DSRC, C-V2X) rely on elliptic curve cryptography for certificate-based authentication. A CRQC-capable adversary could compromise the certificate chain for an entire vehicle fleet through a single cryptographic break. The supply chain dimension compounds the risk: a Tier 1 or Tier 2 supplier with slower PQC migration creates a vulnerability that propagates into the OEM's security posture.

Outcomes

What you will leave with

  • A frank assessment from automotive security peers of where they are in PQC migration across V2X, OTA, and supply chain systems, including which parts of the migration are proving hardest to move
  • A working view of the supply chain dimension: how to identify which Tier 1 and Tier 2 suppliers represent the highest PQC migration risk, and what contractual and technical leverage actually exists
  • Clarity on the V2X standards landscape: which bodies are driving post-quantum updates to DSRC and C-V2X protocols, and what the realistic timeline is for implementation at fleet scale
  • Peer experience navigating the product lifecycle problem: how to make a migration commitment for vehicles that will be in the field for 15-20 years when the standards landscape is still maturing
  • The governance questions: how to frame quantum risk for a board that understands vehicle cybersecurity regulation but has not yet connected it to cryptographic obsolescence
Anna Beata Kalisz Hedegaard, Founder, QSECDEF

Your Facilitator

Anna Beata Kalisz Hedegaard

Founder, QSECDEF

Anna Beata Kalisz Hedegaard has over 15 years of international experience in deep-tech, telecommunications, and defence communications networks. Her expertise spans intellectual property, advanced communications systems, and quantum secure communications. She has lived and worked across Poland, Denmark, the United States, Malaysia, the Netherlands, and Germany. Anna holds dual Master of Science degrees in Theoretical Cosmology from the University of Southern Denmark and Electrical Engineering from Wright State University, USA. She is the founder and board member of Quantum Security Defence.

View full profile

Expert Membership

Industry Conversations are exclusive to Expert Members

Expert membership brings you into a closed community of senior security practitioners. Industry Conversations are included in the membership. Individual tickets are not available.

  • Access to all Industry Conversations
  • Speaker opportunities at the annual Paris Symposium
  • Enhanced expert profile with lecture archive
  • Advisory board nomination eligibility
  • Co-branding opportunities and social amplification