HYPERFORM
HYPERFORM Project Logo

HYPERFORM : France’s response to the quantum cybersecurity threat

Creating a European reference for hybrid cryptography implementation and testing

The quantum threat, first identified in 1994, is rapidly becoming a reality. Encrypted data is already being harvested today, and within 15 to 20 years, quantum computers are expected to break today’s asymmetric cryptographic protocols—putting critical infrastructure, digital identities, and financial systems at risk. Deploying quantum-safe algorithms and systems is a major challenge, requiring updated standards, new technologies, and robust testing. This also demands crypto-agility—the ability to adapt cryptographic systems as threats evolve.

HYPERFORM, the first French industrial research consortium dedicated to quantum-resistant cryptography, unites key French cybersecurity players to safeguard European sovereignty and prepare for real-world deployment in areas such as electronic ID, banking, secure archiving, and sovereign cloud services. This project is funded by France 2030 and the European Union.

France 2030 Logo

France Relance Logo

HYPERFORM OBJECTIVES

  • Build France's first reference platform for evaluating, testing, and demonstrating post-quantum cryptographic solutions in real-world industrial use cases within three years.
  • Develop high-performance, secure, and crypto-agile implementations of new algorithms, particularly for embedded systems like smart cards.
  • Develop quantum-safe sovereign data protection solutions and define migration strategies to help industries transition from current cryptography to post-quantum solutions smoothly.
  • Contribute actively to international standardization efforts (ISO, IETF, etc.) to position French expertise at the core of new global standards.
  • Proactively identify new attack vectors and develop the corresponding countermeasures to ensure the robustness of post-quantum systems.

HYPERFORM PLATFORM

HYPERFORM platform will be built around concrete use cases provided by the consortium partners, including:

  • Electronic identity document verification
  • Secure banking transactions
  • Long-term archiving of secret documents
  • Collaborative work on confidential data
  • Sovereign cloud data backup

This platform will serve as a demonstrator to:

  • Evaluate performance of new architectures and components in real-world scenarios.
  • Test interoperability between different post-quantum systems.
  • Assess resistance to new vulnerabilities and attacks.
  • Study and validate concrete transition scenarios from pre- to post-quantum.

RESEARCH TOPICS

The HYPERFORM project is structured around four main research axes:

  • Secure and Accelerated Implementation of Hybrid Algorithms
    This axis focuses on creating secure, high-performance hybrid cryptographic algorithms, combining NIST-selected post-quantum families with existing standards (RSA/ECC) for key exchange and signatures. The work involves developing both PC/Cloud software libraries and new hardware-accelerated secure components, all while ensuring provable security for the hybrid protocols and crypto-agility for both hardware and software.
  • Hybrid Pre/Post-Quantum Architectures for a Clear Migration Path This research will define the evolution of product architectures to support hybrid cryptography. It involves designing end-to-end hybrid security schemes, modifying the core of cybersecurity products, and integrating new post-quantum secure components (like USB keys or HSMs). A key goal is to build system-level mechanisms for crypto-agility to manage the transition.
  • Contribution to Standardization and State-of-the-Art Flexibility The project will actively participate in international standardization bodies (such as NIST, IETF, ICAO, GSMA, and ISO) to ensure French expertise is represented. This work will also focus on maintaining flexibility by addressing the specific constraints of different industries and integrating crypto-agility at the standards level.
  • New Vulnerabilities and Countermeasures This axis is dedicated to proactively identifying new attacks and potential vulnerabilities in post-quantum algorithms, hybrid schemes, and new end-to-end protocols. The research will involve developing the corresponding countermeasures and performing non-regression testing to validate the continued security of existing pre-quantum algorithms.

HYPERFORM PARTNERS

IDEMIA Logo

IDEMIA Secure Transactions (IST) is a leading provider of payment, connectivity, and cybersecurity solutions used by billions of people worldwide. With unmatched expertise in cryptography and credential issuance, IST is trusted by over 2000 financial institutions, mobile operators, automotive manufacturers, and IoT providers worldwide. The company employs more than 9000 employees across 45+ countries.
For more information: www.idemia.com.

CryptoNext Security is a leading provider of quantum-resilient cybersecurity solutions. Founded in 2019 and built on over 25 years of academic research, the company helps organizations transition to quantum-resilient cybersecurity by managing cryptographic risks and long-term compliance. Its solutions enable organizations to map, migrate, and manage cryptography in a fast-evolving security landscape.

CryptoNext supports major clients and integrators in finance, defense, industry, and the public sector. As the first European company certified by NIST CAVP for all three standardized PQC algorithms, CryptoNext is also recognized by IDC, ABI Research, and Bain Capital Ventures, and was awarded the Innovation Prize at Les Assises 2022.
For more information: www.cryptonext-security.com

PRIM'X Technologies is an independent French software company that develops and commercializes encryption solutions to ensure the confidentiality of stored data and manage the Right to Know.

PRIM’X solutions protect computer disks, folders and files, network shares, emails and Cloud environments. The level of protection is Common Criteria EAL3+ certified, * Qualified by the French State and other European States, approved for protection of EU and NATO Restricted information.
For more information: www.primx.eu

Founded in 2012 by two cybersecurity experts, Synacktiv's main areas of expertise are penetration testing, security audits, reverse engineering, vulnerability scanning and incident response. It develops numerous offensive security tools as part of its activities.

Synacktiv is approved PASSI RGS and LPM (Information Systems Security Audit Service Provider) & CESTI (Information Technology Security Assessment Center) by ANSSI. It is also labeled Cybersecurity Made In Europe by the Alliance for Digital Confidence (ACN) and a certifying body authorized by the National Gaming Authority (ANJ). Its 170 experts operate mainly from offices in Paris, Toulouse, Lyon, Lille and Rennes and operate in France, Europe and internationally. On a national or international scale, Synacktiv’s involvement within the cyber community is reflected by participation in numerous events (conferences, challenges, CTF) as well as the regular publication of security alerts or articles.
For more information: www.synacktiv.com

CEA-Leti, a technology research institute at CEA, is a global leader in miniaturization technologies enabling smart, energy-efficient and secure solutions for industry.

Founded in 1967, CEA-Leti pioneers micro-& nanotechnologies, tailoring differentiating applicative solutions for global companies, SMEs and startups. CEA-Leti tackles critical challenges in healthcare, energy and digital migration. From sensors to data processing and computing solutions, CEA-Leti’s multidisciplinary teams deliver solid expertise, leveraging world-class pre-industrialization facilities. With a staff of more than 2,000 talents, a portfolio of 3,200 patents, 11,000 sq. meters of cleanroom space and a clear IP policy, the institute is based in Grenoble, France, and has offices in Silicon Valley, Brussels and Tokyo. CEA-Leti has launched 76 startups and is a member of the Carnot Institutes network. Follow us on www.leti-cea.com and @CEA_Leti.

Technological expertise
CEA has a key role in transferring scientific knowledge and innovation from research to industry. This high-level technological research is carried out in particular in electronic and integrated systems, from microscale to nanoscale. It has a wide range of industrial applications in the fields of transport, health, safety and telecommunications, contributing to the creation of high-quality and competitive products.
For more information: www.cea.fr

Inria, the French National Institute for Research in Digital Science and Technology, supports the government in its national digital research and innovation strategies as a program agency. Inria conducts more than 300 research and innovation projects with its 3,500 scientists, engineers, and support staff, in partnership with universities and the digital ecosystem (companies, entrepreneurs, public actors).

Together, we explore key areas such as artificial intelligence, cybersecurity, quantum computing, the cloud, the digital transformation of healthcare, digital twins, and digital technologies for defense. We build concrete solutions such as software, tech startups, partnerships with national companies, and cutting-edge training programs.

Our goal: scientific, technological, and industrial impact in the service of France's digital sovereignty.
For more information: inria.fr

A service of the Prime Minister's Office under the authority of the Secretary General for Defence and National Security (SGDSN), the French cybersecurity Agency (ANSSI) is the national authority for cybersecurity and cyber defence in France. It was created in July 2009.

ANSSI protects victims of large-scale cyber attacks and defends the nation’s critical computer-based systems. ANSSI’s role is also to guide digital transformation in order to anticipate technological breakthroughs and revolutions in usage, and discern weak signals that could be a sign of profound changes in the digital world and developments in the cyber threat landscape. It works with a range of national and international public and private partners in the cyber ecosystem on a wide range of issues: technology, research and training.
More information: https://cyber.gouv.fr

Legal notice

Privacy policy

Contact: IST_FundedResearch@idemia.com