When will IBM Cloud be deprecated?

IBM has not published a firm IBM Cloud PQC migration deadline. IBM's Quantum Safe roadmap provides migration planning tools.

Cloud Platform

Is IBM Cloud Quantum Safe?

Not Quantum Safe

Not yet fully quantum safe, but IBM leads the industry in PQC readiness. IBM developed the CRYSTALS algorithms that became NIST standards (ML-KEM, ML-DSA) and offers IBM Quantum Safe technology for enterprise migration. However, IBM Cloud services have not completed the transition.

Key Takeaway: IBM Cloud is NOT quantum safe. Scan your IBM Cloud environment with QScout. Evaluate IBM Quantum Safe for enterprise-wide cryptographic discovery. IBM z16 customers should enable hardware PQC acceleration.

Technical Analysis

IBM Cloud is NOT fully quantum safe today, but IBM is uniquely positioned in the PQC landscape. **Current State:** IBM Cloud services use TLS 1.2/1.3 with classical RSA and ECDSA certificates. IBM Cloud Key Protect and Hyper Protect Crypto Services use classical key wrapping. **PQC Progress:** IBM developed the core algorithms that became NIST PQC standards: - **CRYSTALS-Kyber (ML-KEM)**: Developed by IBM Research. Now NIST FIPS 203. - **CRYSTALS-Dilithium (ML-DSA)**: Developed by IBM Research. Now NIST FIPS 204. - **IBM Quantum Safe**: Enterprise offering for cryptographic discovery and migration planning. - **IBM z16 mainframe**: Hardware-accelerated PQC support for on-premises workloads. **HNDL Risk:** Despite IBM's PQC leadership, IBM Cloud service endpoints still use classical TLS key exchange in most cases. Data intercepted in transit today remains vulnerable to future quantum decryption. **What Organizations Should Do:** Leverage IBM's Quantum Safe tools alongside QScout for comprehensive cryptographic discovery. IBM's z16 hardware PQC support is available for mainframe customers. Cloud-native PQC for IBM Cloud services should be monitored.

Full Name	IBM Cloud
Category	cloud
Quantum Vulnerability	IBM Cloud TLS endpoints use classical key exchange vulnerable to quantum attack. IBM developed the NIST PQC standards but cloud service migration is ongoing.
NIST Status	IBM developed ML-KEM (FIPS 203) and ML-DSA (FIPS 204). IBM Quantum Safe enterprise tools available. IBM Cloud service-level PQC deployment is in progress.
Deprecation Timeline	IBM has not published a firm IBM Cloud PQC migration deadline. IBM's Quantum Safe roadmap provides migration planning tools.
Replaced By	IBM Cloud services will migrate to ML-KEM and ML-DSA — the very algorithms IBM developed

Migration Guidance

Scan your IBM Cloud environment with QScout. Evaluate IBM Quantum Safe for enterprise-wide cryptographic discovery. IBM z16 customers should enable hardware PQC acceleration.

Related Algorithms

ML-KEM

Module-Lattice-Based Key-Encapsulation Mechanism (FIPS 203)

ML-DSA

Module-Lattice-Based Digital Signature Algorithm (FIPS 204)

TLS 1.3

Transport Layer Security 1.3

AWS

Amazon Web Services

Microsoft Azure

Microsoft Azure Cloud Platform

How Qtonic Quantum Can Help

QScout Surface/Silver/Gold — Discover every instance of IBM Cloud in your infrastructure. 7-day cryptographic inventory with HNDL exposure scoring.

Assessment Methodology — 70 security modules covering cryptographic discovery, quantum threat modeling, and migration planning.

Back to Algorithm Database — Explore 25+ cryptographic algorithms and their quantum safety status.

Don’t Know Where IBM Cloud Lives in Your Stack?

QScout discovers every instance of IBM Cloud across your infrastructure in 7 days — with zero operational disruption. 72-hour time to first findings.

Schedule Assessment Try Risk Calculator

Assess your quantum-vulnerable cryptography with QScout, validate readiness with QStrike, or plan your migration with QSolve.