119-hr4942

[Congressional Bills 119th Congress]
[From the U.S. Government Publishing Office]
[H.R. 4942 Introduced in House

    (IH) ]

<DOC>

119th CONGRESS
 1st Session
 H. R. 4942

To direct the Subcommittee on the Economic and Security Implications of 
 Quantum Information Science to submit reports on mitigating the 
 cybersecurity and national security risks posed by certain quantum 
 computers, and for other purposes.

_______________________________________________________________________

 IN THE HOUSE OF REPRESENTATIVES

 August 8, 2025

 Mr. Subramanyam (for himself, Mr. McGuire, Ms. Stevens, and Mr. 
 Harrigan) introduced the following bill; which was referred to the 
 Committee on Science, Space, and Technology

_______________________________________________________________________

 A BILL

To direct the Subcommittee on the Economic and Security Implications of 
 Quantum Information Science to submit reports on mitigating the 
 cybersecurity and national security risks posed by certain quantum 
 computers, and for other purposes.

 Be it enacted by the Senate and House of Representatives of the 
United States of America in Congress assembled,

SECTION 1. SHORT TITLE.

 This Act may be cited as the ``Quantum Encryption Readiness and 
Resilience Act''.

SEC. 2. REPORTS ON MITIGATING THE CYBERSECURITY AND NATIONAL SECURITY 
 RISKS POSED BY CERTAIN QUANTUM COMPUTERS.

    (a) Initial Report.--Not later than one year after the date of the 
enactment of this Act, the Subcommittee on the Economic and Security 
Implications of Quantum Information Science established under 

section 105 of the National Quantum Initiative Act (15 U.S.C. 8814a) shall 
carry out the following:

    (1) Conduct an assessment of each of the following:
        (A) The capabilities and progress of the United 
 States, relative to other countries, with respect to 
 the following:
            (i) Developing a cryptographically-relevant 
 quantum computer.
            (ii) Adopting security and preparedness 
 measures, including post-quantum cryptography, 
 to mitigate the cybersecurity and national 
 security risks posed by such computer.
        (B) The progress of private sector entities and 
 public sector entities in the United States toward 
 adopting such measures, including the progress toward 
 implementing the guidance under 

section 4 of the 
 Quantum Computing Cybersecurity Preparedness Act (6 
 U.S.C. 1526).

    (2) Identify the sectors of the economy most vulnerable to 
 such risks.

    (3) Based upon such assessments and such identification, 
 develop a plan to mitigate such risks, including by carrying 
 out the following:
        (A) Facilitating collaboration between agencies and 
 departments of the Federal Government.
        (B) Facilitating the exchange of information 
 between such private sector entities and public sector 
 entities.
            (C) Forming partnerships between the Federal 
 Government and such private sector entities.
            (D) Identifying such measures that such private 
 sector entities and public sector entities may adopt.
        (E) Supporting such exchange and the adoption of 
 such measures, including by identifying actions, 
 including piloting projects, providing technical 
 assistance, and publishing cyber hygiene guidance for 
 such private sector entities, that such agencies and 
 departments may carry out to support such exchange and 
 adoption.

    (4) Develop guidelines for determining whether a quantum 
 computer is a cryptographically-relevant quantum computer.

    (5) Submit to the appropriate committees of Congress a 
 report in classified or unclassified form, as appropriate, that 
 includes information relating to the following:
        (A) The assessments conducted under paragraph

    (1) .
        (B) The sectors identified under paragraph

    (2) .
            (C) The plan developed under paragraph

    (3) .
            (D) The guidelines developed under paragraph

    (4) .
        (E) Recommendations for the following:
            (i) A timetable to implement such plan.
            (ii) Policies to implement such plan that 
 require legislation.
            (iii) Policies to implement such plan that 
 do not require legislation.

    (b) Subsequent Reports.--Not later than one year after the report 
under subsection

    (a) is submitted and annually thereafter for four 
years, the Subcommittee referred to in such subsection shall submit to 
Congress a report in classified or unclassified form, as appropriate, 
that includes information relating to the progress of private sector 
entities and public sector entities in the United States toward 
adopting the measures described in such subsection.
            (c) === Definitions. ===
-In this section:

    (1) Appropriate committees of congress.--The term 
 ``appropriate committees of Congress'' has the meaning given 
 such term in 

section 2 of the National Quantum Initiative Act 
 (15 U.S.C. 8801).

    (2) Classical computer; post-quantum cryptography; quantum 
 computer.--The terms ``classical computer'', ``post-quantum 
 cryptography'', and ``quantum computer'' have the meanings 
 given such terms in 

section 3 of the Quantum Computing 
 Cybersecurity Preparedness Act (6 U.S.C. 1526 note).

    (3) Cryptographically-relevant quantum computer.--The term 
 ``cryptographically-relevant quantum computer'' means a quantum 
 computer with the ability to compromise a cryptographic system 
 that a classical computer is unable to compromise.
 <all>