Is It Quantum Safe?
Quick-reference guide to quantum safety for 58 cryptographic algorithms, protocols, and hash functions. Each entry includes NIST deprecation timelines, quantum vulnerability analysis, and migration guidance.
Key Takeaway: Of 58 cryptographic standards analyzed, 49 are not yet fully quantum safe and must be migrated before CRQC emergence. 9 are quantum safe. NIST IR 8547 (initial public draft) proposes deprecation by 2030 and disallowance after 2035 for all Shor-vulnerable algorithms (RSA, ECDSA, ECDH, DH, DSA). Replace with ML-KEM (FIPS 203), ML-DSA (FIPS 204), or SLH-DSA (FIPS 205).
Post-Quantum Standards
NIST-standardized post-quantum cryptography algorithms
Encryption
Symmetric and asymmetric encryption
RSA-2048
RSA with 2048-bit keys
No.
RSA-4096
RSA with 4096-bit keys
No.
RSA-1024
RSA with 1024-bit keys
No.
AES-256
Advanced Encryption Standard with 256-bit keys
Yes.
AES-128
Advanced Encryption Standard with 128-bit keys
Uncertain.
3DES
Triple Data Encryption Standard (3DES / TDEA)
No.
Key Exchange
Key agreement and encapsulation
Digital Signatures
Authentication and integrity
Hash Functions
Integrity and fingerprinting
Protocols
TLS, SSH, IPsec, X.509
Cloud Platforms
Cloud-provider cryptographic services and migration posture
AWS
Amazon Web Services
Not yet.
Microsoft Azure
Microsoft Azure Cloud Platform
Not yet.
Google Cloud
Google Cloud Platform (GCP)
Not yet.
Oracle Cloud
Oracle Cloud Infrastructure (OCI)
Not yet.
IBM Cloud
IBM Cloud
Not yet fully quantum safe, but IBM leads the industry in PQC readiness.
SaaS Platforms
Enterprise SaaS cryptographic dependencies and readiness posture
Salesforce
Salesforce CRM and Platform
Not yet.
ServiceNow
ServiceNow IT Service Management Platform
Not yet.
Workday
Workday HCM and Financial Management
Not yet.
SAP
SAP ERP and S/4HANA
Not yet.
Oracle ERP
Oracle ERP Cloud (Fusion Cloud Applications)
Not yet.
Communication
Messaging, email, collaboration, and communications security
Zoom
Zoom Video Communications
Not yet fully quantum safe.
Microsoft Teams
Microsoft Teams
Not yet.
Slack
Slack (Salesforce)
Not yet.
WhatsApp (Meta)
Not yet fully quantum safe.
Signal
Signal Private Messenger
Yes.
Chrome
Google Chrome Browser
Yes.
iOS
Apple iOS and iMessage
Partially.
Email Encryption
Email Encryption (S/MIME, PGP)
No.
Infrastructure
Operating systems, containers, VPN, and infrastructure dependencies
Cloudflare
Cloudflare CDN and Security
Partially.
Akamai
Akamai Technologies CDN and Security
Not yet.
Fastly
Fastly Edge Cloud Platform
Not yet.
Bitcoin
Bitcoin Cryptocurrency
No.
VPN
Virtual Private Network Protocols
Most VPN protocols are not quantum safe.
Windows
Microsoft Windows
Not by default.
Docker
Docker Container Platform
No.
Kubernetes
Kubernetes Container Orchestration
No.
Online Banking
Online Banking and Payment Systems
No.
Databases
Database encryption, key management, and long-retention exposure
Identity
Identity providers, token signing, SSO, and authentication systems
Know Which Algorithms Are in Your Stack?
Most organizations don't have a complete cryptographic inventory. QScout discovers every algorithm, key, and certificate across your infrastructure in 7 days — 72-hour first findings, low-disruption delivery.