What Is Harvest Now, Decrypt Later (HNDL)?

Harvest now, decrypt later (HNDL) is an attack strategy in which adversaries steal encrypted data today and store it to decrypt in the future — once cryptographically relevant quantum computers can break today's public-key encryption. Also called "store now, decrypt later," it turns data that feels safe behind strong encryption into a long-term liability.

How harvest now, decrypt later works

Most of the encryption that protects internet traffic and stored data relies on public-key algorithms such as RSA and elliptic-curve cryptography (ECC). Their security rests on math problems that classical computers cannot solve in any practical timeframe. A sufficiently powerful quantum computer running Shor's algorithm, however, could break them.

HNDL attackers do not wait for that day. They intercept and archive encrypted communications and exfiltrate encrypted datasets now, betting that the cost of storage is trivial compared with the future value of the plaintext. When capable quantum hardware arrives, they decrypt the backlog at their leisure. The attack is invisible at the time it happens, which is exactly what makes it dangerous.

Why HNDL matters today

The key insight is that the clock is already running. Any data that must remain confidential for years — medical records, financial information, intellectual property, classified material, and especially long-lived credentials and keys — is at risk the moment it is captured, even though large-scale quantum decryption is still on the horizon. Security agencies and standards bodies have urged organizations to begin migrating now, and NIST has published post-quantum cryptography standards to that end.

For credentials specifically, the stakes are sharp. A long-lived key encrypted and stolen today could be recovered later and still be valid, extending the blast radius of a breach years into the future. That is why preparing for HNDL is not only an encryption-in-transit problem but a credential-hygiene problem too.

HNDL and Vooda's quantum-safety assessment

The first practical step against HNDL is knowing where you are exposed. Vooda's quantum-safety assessment identifies credentials and keys that rely on quantum-vulnerable algorithms such as RSA, ECC, and DSA, scores the associated risk, and points toward NIST-aligned post-quantum migration paths. Pairing that visibility with continuous secret scanning means the long-lived secrets most attractive to a harvest-now attacker get surfaced, rotated, and upgraded before they become tomorrow's plaintext.

How to prepare for HNDL

• Inventory where quantum-vulnerable algorithms (RSA, ECC, DSA) are used.
• Prioritize long-lived, high-sensitivity data and credentials first.
• Migrate to NIST post-quantum cryptography standards over time.
• Shorten credential lifetimes so harvested secrets expire faster.

Frequently asked questions

Why is harvest now, decrypt later a threat today?

Because data stolen now can be decrypted later. Anything with a long confidentiality lifespan is at risk the moment it is captured, even before quantum computers mature.

What protects against HNDL attacks?

Migrating to post-quantum cryptography protects future communications; the first step is inventorying where quantum-vulnerable algorithms are in use.

Is HNDL only a concern for governments?

No. Healthcare, finance, and any organization with long-lived secrets or data should treat HNDL as a present-day risk.