The cybersecurity landscape is poised for seismic shifts in 2025, with digital trust, quantum readiness, and AI-driven threats taking centre stage. DigiCert, a global leader in digital trust, has unveiled its annual security predictions, forecasting the challenges and innovations set to redefine the industry in the coming year. From the rise of post-quantum cryptography to the proliferation of AI-driven phishing attacks, the company’s insights underscore a pressing need for resilience, transparency, and automation.
The Quantum Countdown Begins
DigiCert predicts that 2025 will see post-quantum cryptography (PQC) transition from concept to reality. With compliance pressures mounting and announcements expected from the U.S. National Security Agency (NSA), organisations are preparing for a quantum-resilient future. Industries reliant on long-term data security, such as finance and healthcare, are expected to be early adopters of quantum-resistant algorithms, ensuring their systems remain secure against the looming threat of quantum computing.
Jason Sabin, CTO at DigiCert, emphasised the urgency, stating, “Driving quantum readiness is no longer optional. Organisations must start planning today to ensure their data and systems remain secure in the quantum era.”
The Age of Digital Trust Officers
As organisations grapple with increasing cyber risks, the role of Chief Trust Officers (CTrOs) is becoming indispensable. These executives will lead efforts to secure digital ecosystems, ensure compliance, and navigate ethical challenges posed by emerging technologies like AI. With digital trust now a boardroom priority, CTrOs are expected to become pivotal in safeguarding organisational integrity.
Automation Takes Centre Stage
Shorter SSL/TLS certificate lifespans are placing immense pressure on organisations to adopt automated systems. DigiCert highlights the end of manual certificate management, still surprisingly common in nearly a quarter of enterprises. Automation will be key to crypto-agility, enabling companies to respond swiftly to evolving security standards and minimising risks associated with human error.
A New Era for Content Verification
In an era plagued by misinformation and deepfakes, content provenance is set to take a mainstream role. DigiCert predicts the widespread adoption of the Content Credential icon, championed by the Coalition for Content Provenance and Authenticity (C2PA). By embedding trust signals into images and videos, this technology aims to curb the spread of manipulated content, enhancing the credibility of digital media.
AI: Friend or Foe?
The rapid evolution of AI presents a double-edged sword. While it offers immense potential for innovation, DigiCert warns of a surge in AI-driven phishing attacks. Attackers are expected to use AI to craft hyper-personalised phishing campaigns, scaling their operations with alarming efficiency. Enterprises must invest in advanced detection systems to counter this growing threat.
Resilience Amid IoT Expansion
The summer 2024 CrowdStrike outage underscored the critical need for resilience, particularly as IoT adoption continues to expand. Over-the-air updates for connected devices, including self-driving cars, have drawn scrutiny due to their potential vulnerabilities. DigiCert anticipates a push for stricter security practices, driven by the European Union’s Cyber Resilience Act, set to take effect in 2027.
The Path to Simplification
Despite rising concerns about single-vendor risks, organisations are expected to consolidate their cybersecurity vendors. This trend reflects a desire for simplified management and improved integration, even as the cybersecurity industry grapples with heightened complexity and shrinking venture capital funding.
Custom Standards for a Changing World
Private PKI frameworks, such as ASC X9, are gaining traction as industries demand tailored solutions for stringent regulatory environments. These standards offer the flexibility needed to address unique operational challenges while fostering secure collaboration.
Digital Trust as a Foundation
As digital ecosystems become more complex, DigiCert’s focus on transparency and trust shines through. The introduction of Cryptography Bills of Materials (CBOMs) represents a proactive approach to cataloguing cryptographic assets and dependencies, helping organisations assess risks more effectively.
The Cybersecurity Road Ahead
DigiCert’s predictions for 2025 highlight both the opportunities and challenges of a rapidly evolving cybersecurity landscape. With AI, automation, and quantum computing on the horizon, enterprises must prioritise innovation and resilience to stay ahead of emerging threats.
“The relentless pace of innovation is not just reshaping our digital lives—it’s exposing new vulnerabilities faster than we can secure them,” said Sabin. “The predictions for 2025 underscore the urgent need to stay ahead of these vulnerabilities by driving quantum readiness, enhancing transparency, and reinforcing trust as the bedrock of our rapidly changing digital ecosystem.”