Workshops Minerals & Mining Critical Minerals Supply Chain Cryptographic Risk

Minerals & Mining Full Day or Half Day Workshop

Critical Minerals Supply Chain Cryptographic Risk and Traceability

This workshop equips supply chain security leads and compliance officers to assess quantum cryptographic risk across critical minerals provenance, chain-of-custody, and regulatory reporting systems.

Full day (6 hours) or half day

In person or online

Max 30 delegates

Commission This Workshop View Agenda

Proud to recommend our expert members

Workshop Description

For supply chain security leads, compliance officers, and critical minerals programme managers. Covers quantum cryptographic risk across minerals provenance systems, blockchain-based chain-of-custody platforms, digital certificates, and encrypted data exchanges between mining companies, refiners, manufacturers, and government agencies.

Critical minerals supply chains depend on cryptographic systems at every stage: blockchain provenance platforms verify conflict-free sourcing, X.509 digital certificates authenticate assay results, TLS-encrypted APIs transmit grade and volume data between trading partners, and digital product passports attest to processing origin. Every one of these cryptographic mechanisms uses algorithms (RSA, ECDSA, AES key exchange) that a cryptographically relevant quantum computer will break. The EU Critical Raw Materials Act mandates supply chain auditing with cryptographic attestation. The US CHIPS and Science Act requires semiconductor supply chain traceability that relies on the same vulnerable infrastructure. The OECD Due Diligence Guidance five-step framework depends on digitally signed third-party audit reports. When the cryptographic foundations of these systems fail, compliance verification fails with them. This workshop maps the cryptographic dependencies across your minerals supply chain, identifies the highest-risk nodes, and builds a phased PQC migration plan that maintains compliance continuity throughout the transition.

What participants cover

Supply chain cryptographic mapping: RSA/ECDSA/AES dependencies in blockchain provenance platforms (RMI, ITSCI, Better Mining), X.509 certificate chains, and inter-organisational API data exchanges
Regulatory compliance exposure: EU CRMA digital product passport requirements, US CHIPS Act traceability mandates, and OECD Due Diligence five-step framework cryptographic dependencies
Blockchain PQC migration: SLH-DSA/SPHINCS+ for ledger integrity, ML-DSA for transaction signing, and backward compatibility with existing chain-of-custody records
Certificate and PKI migration: transitioning X.509 infrastructure to ML-DSA/ML-KEM with hybrid schemes for multi-year supply chain partner interoperability
Inter-organisational data security: migrating TLS 1.3 to PQC key exchange for encrypted data flows between miners, refiners, smelters, OEMs, and regulatory agencies
Multi-stakeholder coordination: supply chain partner readiness assessment, industry consortium engagement (RMI, IRMA), and governance framework for PQC migration milestones

Preliminary Agenda

Full-day session structure with scheduled breaks. Content is configurable to your supply chain structure, minerals portfolio, traceability platforms, and regulatory jurisdiction.

#	Session	Topics
1	Quantum Threats to Critical Minerals Supply Chains Where cryptographic dependencies create exposure across the minerals value chain
2	Provenance Systems and Digital Certificate Vulnerability Cryptographic foundations of minerals traceability under quantum threat	Blockchain-based provenance systems: RSA/ECDSA signature dependencies in minerals chain-of-custody platforms (RMI, ITSCI, Better Mining) and quantum break timeline Digital certificates for conflict minerals compliance: X.509 certificate chains, PKI infrastructure, and ML-DSA migration path for EU CRMA and Dodd-Frank Section 1502 reporting Encrypted data exchanges: TLS-protected API interfaces between mining companies, refiners, smelters, manufacturers, and government assay agencies
Break, after 50 min
3	Regulatory Landscape: EU CRMA, US CHIPS Act, and Supply Chain Due Diligence Compliance obligations that depend on cryptographic integrity	EU Critical Raw Materials Act (CRMA): supply chain auditing requirements, digital product passports, and cryptographic attestation of minerals origin and processing US CHIPS and Science Act: semiconductor supply chain traceability requirements and intersection with PQC transition timelines for domestic minerals processing OECD Due Diligence Guidance: five-step framework cryptographic dependencies and how quantum threats undermine step 4 (independent third-party audit) verification systems
4	Interactive Demonstration: Supply Chain Cryptographic Audit Full-day format only	Facilitator-led walkthrough: mapping cryptographic dependencies across a representative critical minerals supply chain from mine site to manufacturing facility Identifying quantum-vulnerable nodes: which digital certificates, blockchain signatures, and encrypted data links break first and what the downstream compliance impact is Delegates discuss: applying the audit framework to their own supply chains, identifying highest-risk cryptographic dependencies and PQC migration priorities
Break, after 60 min
5	PQC Migration for Supply Chain Systems Transitioning chain-of-custody and provenance platforms to quantum-resistant cryptography	Blockchain PQC migration: hash-based signature schemes (SLH-DSA/SPHINCS+) for blockchain integrity, ML-DSA for transaction signing, and backward compatibility with existing ledger entries Certificate chain migration: transitioning X.509 PKI infrastructure to ML-DSA/ML-KEM with hybrid schemes for interoperability during multi-year supply chain partner transitions API and data exchange security: migrating TLS 1.3 to PQC key exchange (ML-KEM) for inter-organisational data flows without disrupting existing EDI and API integrations
6	Multi-Stakeholder Coordination and Governance Coordinating PQC transition across supply chain partners	Supply chain partner readiness assessment: evaluating cryptographic maturity across mining companies, toll refiners, smelters, OEMs, and regulatory agencies Industry consortium engagement: RMI, IRMA, and minerals industry body roles in coordinating PQC standards adoption across the supply chain Governance framework: establishing PQC migration milestones, compliance verification protocols, and escalation procedures for non-compliant supply chain nodes
7	Q&A and Migration Roadmap Planning

Designed and Delivered By

Workshops are designed and delivered by QSECDEF in collaboration with sector specialists. All facilitators have direct experience in both quantum technologies and minerals & mining systems.

QSECDEF brings world-leading expertise in post-quantum cryptography, quantum computing strategy, and defence-grade security assessment. Our advisory membership spans 600+ organisations and 1,200+ professionals working at the intersection of quantum technologies and critical infrastructure security.

Minerals & Mining workshops are co-delivered with sector specialists who bring direct operational experience in minerals & mining organisations. This ensures workshop content is grounded in regulatory, operational, and technical realities specific to the sector.

Commission This Workshop

Sessions are configured around your supply chain structure, minerals portfolio, traceability platform architecture, and regulatory compliance requirements. Get in touch to discuss requirements and schedule a date.

Minerals & Mining Workshops All Consulting Services All Workshops