Evidence signature
Public signals bind to governed proof.
No customer data.
Predict exposure. Prepare CryptoAgility. Prove readiness. No customer data.

This benchmark compares QScout against common scanner classes for PQC signal depth, CBOM utility, and completion-to-findings flow quality.
The matrix is buyer-facing rather than laboratory certification. It explains where QScout is meant to create decision evidence: public-surface discovery, cryptographic bill of materials readiness, HNDL scoring, and governed follow-on handoff when a finding needs deeper validation.
A positive QScout mark means the capability is native to the QScout evidence path. A partial mark means the adjacent class can produce related data, but usually without QScout-specific quantum-risk scoring, CBOM packaging, or executive migration framing.
QScout's HNDL scoring expresses Mosca's inequality — X + Y > Z— where X is the time a secret must remain secure, Y is the migration window, and Z is the time until a cryptanalytically relevant quantum computer. Legacy and generic scanners do not encode this framing.
| Capability | QScout | Generic TLS Scanner | Legacy Vuln Scanner |
|---|---|---|---|
| PQC-specific scoring | Yes (HNDL + CBOM) | No | Partial |
| CBOM-ready output | Yes | No | No |
| Owner-auth completion handoff | Deterministic | N/A | Varies |
| Mission-control live UX | Yes | No | No |
Methodology and scoring definitions are published on the QScout Methodology page.