Post-quantum readiness diagnostic

Answer with the real state of your organization. The score stays in your browser and helps frame the next actions.

Do you have an inventory of asymmetric cryptography usage?

NoRSA/ECC usage is known case by case. PartialPublic assets are listed, internal usage remains incomplete. YesApplications, certificates, keys, protocols and owners are tracked.

Are your TLS endpoints and certificate chains mapped?

NoNo consolidated view of domains, CAs or algorithms. PartialCritical domains are tracked manually. YesRegular scan with owner, expiry date and algorithm.

Are long-lived SSH keys and bastions governed?

NoKeys are scattered across accounts and scripts. PartialBastions are covered, automations less so. YesLifetime, rotation, owners and revocation are tracked.

Is code and artifact signing included in scope?

NoCI/CD, packages and images are not inventoried. PartialMajor releases are covered. YesArtifacts, keys, HSMs, timestamping and dependencies are tracked.

Have you identified data exposed to harvest now, decrypt later risk?

NoConfidentiality lifetime is not assessed. PartialRegulated data is known. YesLong-lived flows have a migration priority.

Do your critical vendors publish a PQC or hybrid roadmap?

NoNo formal request has been made. PartialHyperscalers are tracked, business SaaS less so. YesClauses, roadmaps and support evidence are centralized.

Can you change algorithms without a heavy application rewrite?

NoCryptographic choices are hardcoded. PartialSome libraries are configurable. YesPolicies, libraries and tests support crypto-agility.

Do you have an environment to test hybrid modes and performance impact?

NoNo PQC test bench exists. PartialOne-off tests are possible. YesCompatibility, latency, key sizes and rollback are tested.

0%

Lightweight PQC readiness, crawlable pages and minimal data collection. Privacy