UAE launches National Encryption Policy to prepare for quantum leap in cybersecurity threats

The UAE has approved the National Encryption Policy and issued its executive regulation, marking a major step in strengthening the nation’s digital infrastructure and accelerating the shift to post-quantum cryptography.

Government entities are now required to prepare clear, officially approved transition plans to move from traditional encryption methods to quantum-resilient standards.

The policy aims to ensure a safer, more technologically prepared future amid rapid advancements in quantum computing.

It reflects the UAE’s ambition to remain at the forefront of global digital transformation and reinforces its position as an international hub for artificial intelligence and advanced technologies.

UAE Cybersecurity Council

Under the policy, the UAE Cybersecurity Council will oversee national migration efforts, working closely with government bodies to ensure the successful implementation of post-quantum encryption standards.

The Council will focus on strengthening data protection and safeguarding digital assets in line with international best practices.

The UAE is formulating comprehensive national strategies to enhance readiness for emerging cybersecurity challenges. By taking a proactive approach and investing in advanced technologies, the country has positioned itself among the world’s leading nations in adopting post-quantum encryption.

The UAE Cybersecurity Council plays a central role in protecting national information security, preventing unauthorised access, and proposing legislation, policies and regulations related to encryption.

It also establishes the procedures and standards required for implementation, with recommendations submitted to the National Security Advisor for approval.

Cybersecurity risks

The Council will develop mechanisms to mitigate risks posed by quantum computing to systems using outdated or weak cryptography.

It will also prepare migration plans for sensitive systems, conduct technical and analytical assessments, and support both government and private entities in evaluating the integrity and readiness of digital systems before large-scale deployment.

These assessments include evaluating the quality, efficiency and preparedness of AI systems, software, hardware and other technical components to ensure alignment with national and international standards.

This enables institutions to secure technical accreditation and validate their solutions with confidence.

To enhance security, the Council’s services are structured around four testing and verification pillars:

• AI reliability testing
• Software reliability testing
• Hardware reliability testing
• Signal reliability testing

These pillars ensure that digital systems, applications and critical infrastructure can withstand emerging threats and comply with the UAE’s cybersecurity requirements.

Digital transformation

Dr. Mohammed Al-Kuwaiti, Head of Cybersecurity for the UAE government, stated that the approval of the National Encryption Policy and its executive regulation represent a major advancement in the national cybersecurity framework.

He emphasised that this achievement reflects the leadership’s commitment to strengthening the UAE’s status as a trusted global hub for artificial intelligence and advanced technologies.

He added that encryption and information security have become critical challenges for countries, institutions and communities amid accelerating digital transformation and increasing reliance on secure and resilient digital infrastructure.