Evidence signature
Public signals bind to governed proof.
No customer data.
Predict exposure. Prepare CryptoAgility. Prove readiness. No customer data.
Qtonic Quantum Lab scores are generated through automated evaluation using publicly available evidence. Scores reflect conditions at the time of evaluation and may change as solutions evolve. Vendors may request a retest at any time. See our fidelity commitment for full details.
Some infrastructure assurance belongs to the underlying provider. It supports buyer diligence, but it is not a Qtonic Quantum-held certification or attestation.
SandboxAQ
SandboxAQ (Google spinoff) Security Suite provides enterprise cryptographic management for PQC migration. It offers cryptographic discovery, inventory, risk assessment, and automated migration capabilities, designed to help organizations comply with NSM-10 and CNSA 2.0 requirements.
Evidence source: Live API
7.0/10, 9.0/10
10/10
7/10
5/10, 5.0/10
8/10
8/10, 9.0/10
6/10
8/10
5.0/10, 5.0/10, 7.0/10
10/10, 10/10, 4.0/10
HIPAA
Technical evidence supports compliance review; this is not a legal compliance determination. Evidence indicates potential fit for ePHI-in-transit review on systems handling laboratory results, imaging, and patient communications. (partial alignment — verify with compliance team before production deployment)
PCI DSS 4.0.1
Technical evidence supports compliance review; this is not a legal compliance determination. Evidence indicates potential PCI DSS 4.0.1 post-quantum review relevance for card-present transaction encryption and cardholder data environments. (partial alignment — verify with compliance team before production deployment)
CNSA 2.0
Technical evidence supports compliance review; this is not a legal compliance determination. Evidence indicates potential CNSA 2.0 review relevance for defense contractor and federal agency deployment planning.
FIPS 203/204/205
Technical evidence supports compliance review; this is not a legal compliance determination. Evidence indicates potential FIPS 203/204/205 review relevance for federal systems and regulated financial or healthcare environments.
QSolve builds your path to January 1, 2029 readiness.
Qtonic Quantum QSolve advisors work alongside your CISO, board, and compliance teams — selecting the right vendor from this registry, managing the competitive evaluation, and requiring quarterly PQC training through your 2029 readiness date.
Request an assessment →FIPS 203 (ML-KEM)
NIST — Pass
FIPS 204 (ML-DSA)
NIST — Pass
FIPS 205 (SLH-DSA)
NIST — N/A
CNSA 2.0
NSA — Pass
NSM-10
White House — Pass
EO 14028
White House — Pass
PCI DSS 4.0.1
PCI SSC — Partial
HIPAA
HHS — Partial
GDPR
EU — N/A
POPIA
South Africa — N/A
PDPA
Singapore — N/A
LGPD
Brazil — N/A
Last evaluated: July 5, 2026
Status: active
Use QScout public intake for a verified website snapshot, then scope QScout Surface, Silver, or Gold scope when approved evidence is needed for inventory, roadmap, and remediation decisions.
IBM
IBM z16 mainframe with CPACF (Central Processor Assist for Cryptographic Functions) provides hardware-accelerated PQC at FIPS 140-3 Level 4 — the highest validation level reported by the source. It enables transparent PQC for z/OS workloads protecting the critical banking and government systems.
Last evaluated: Jul 1, 2026
PQShield
PQShield provides hardware and software PQC implementations with industry-leading side-channel protection. Founded by researchers who co-authored the NIST PQC standards, PQShield delivers FPGA/ASIC IP and software libraries with formal verification and TVLA-tested masking countermeasures.
Last evaluated: Jul 1, 2026
ISARA
ISARA Radiate quantum-safe toolkit for enterprise PQC migration with hybrid certificates.
Last evaluated: Jul 1, 2026
We evaluate PQC solutions on request. Submit a vendor for review and we will route it through the Qtonic Quantum Lab intake queue.
Qtonic Quantum Lab scores are independent research opinions based on a published quantitative rubric and automated evaluation of publicly available evidence. Domain-expert review controls are independent of the automated evaluation system, and provenance labels disclose when evidence is verified, contested, inferred, or degraded. No vendor pays for inclusion, ranking, or evaluation. Scores do not constitute endorsement, certification, or legal advice. Methodology is uniformly applied and publicly disclosed. All product names and trademarks are the property of their respective owners. Solution maintainers may request a methodology retest at any time. Full research disclaimer.
Qtonic Quantum Lab scores are independent research opinions based on a published quantitative rubric and automated evaluation of publicly available evidence. Domain-expert review controls are independent of the automated evaluation system, and provenance labels disclose when evidence is verified, contested, inferred, or degraded. No vendor pays for inclusion, ranking, or evaluation. Scores do not constitute endorsement, certification, or legal advice. Methodology is uniformly applied and publicly disclosed. All product names and trademarks are the property of their respective owners. Solution maintainers may request a methodology retest at any time. Full research disclaimer.
Monthly insights on PQC migration and quantum risk. No spam.
Provider Infrastructure: SOC 1SOC 2SOC 2 HIPAAISO 27001ISO 27017ISO 27018ISO 27701ISO 22301ISO 9001 + 5 more — Inherited cloud controls documented via Zoho Cloud. Trust Center
Release proof entry pointLab: signed snapshot proofQStrike: synthetic E2E proofQScout: backend health proofRelease Proof
© 2024–2026 Qtonic Quantum Corp.
Miami, FL HQ · Be’er Sheva R&D