When will Oracle Cloud be deprecated?

Oracle has not published PQC migration timelines for OCI. Follow NIST and CNSA 2.0 guidance for planning.

Cloud Platform

Is Oracle Cloud Quantum Safe?

Not Quantum Safe

Not yet. Oracle Cloud Infrastructure has not publicly announced production PQC support for its cloud services. OCI relies on classical TLS with RSA and ECDSA for service encryption.

Key Takeaway: Oracle Cloud is NOT quantum safe. Scan your OCI environment with QScout to identify cryptographic dependencies. Monitor Oracle's security advisories for PQC announcements. Consider application-level PQC encryption for sensitive data in transit.

Technical Analysis

Oracle Cloud Infrastructure is NOT quantum safe today. **Current State:** OCI uses TLS 1.2/1.3 with RSA and ECDSA certificates across its service endpoints, including OCI Vault (key management), OCI Load Balancer, and Oracle Autonomous Database connections. **PQC Progress:** Oracle has been less publicly vocal about PQC migration compared to AWS, Azure, and Google: - **Oracle Cloud Vault**: No announced PQC key type support. - **Oracle Database TDE**: Uses AES-256 for transparent data encryption (quantum-resistant for data at rest), but TLS connections to the database use classical key exchange. - **Java**: Oracle's JDK has added experimental PQC algorithm support, which will eventually benefit OCI services. **HNDL Risk:** All OCI service API calls, data transfers, and management plane operations use classical TLS, making intercepted traffic vulnerable to future quantum decryption. **What Organizations Should Do:** Inventory all OCI services and identify data flows with long-term confidentiality requirements. Evaluate hybrid cloud strategies that can leverage PQC-capable providers where available. Use QScout to discover your OCI cryptographic surface.

Full Name	Oracle Cloud Infrastructure (OCI)
Category	cloud
Quantum Vulnerability	OCI TLS endpoints use classical key exchange (RSA/ECDH) vulnerable to quantum attack. AES-256 at-rest encryption is quantum-resistant.
NIST Status	Oracle has not publicly announced NIST PQC standard adoption timelines for OCI services. JDK PQC support is in progress.
Deprecation Timeline	Oracle has not published PQC migration timelines for OCI. Follow NIST and CNSA 2.0 guidance for planning.
Replaced By	OCI services will need to migrate to ML-KEM for key exchange and ML-DSA for signatures when Oracle deploys PQC support

Migration Guidance

Scan your OCI environment with QScout to identify cryptographic dependencies. Monitor Oracle's security advisories for PQC announcements. Consider application-level PQC encryption for sensitive data in transit.

Related Algorithms

TLS 1.2

Transport Layer Security 1.2

RSA-2048

RSA with 2048-bit keys

AWS

Amazon Web Services

Microsoft Azure

Microsoft Azure Cloud Platform

Google Cloud

Google Cloud Platform (GCP)

How Qtonic Quantum Can Help

QScout Surface/Silver/Gold — Discover every instance of Oracle Cloud in your infrastructure. 7-day cryptographic inventory with HNDL exposure scoring.

Assessment Methodology — 70 security modules covering cryptographic discovery, quantum threat modeling, and migration planning.

Back to Algorithm Database — Explore 25+ cryptographic algorithms and their quantum safety status.

Don’t Know Where Oracle Cloud Lives in Your Stack?

QScout discovers every instance of Oracle Cloud across your infrastructure in 7 days — with zero operational disruption. 72-hour time to first findings.

Schedule Assessment Try Risk Calculator

Assess your quantum-vulnerable cryptography with QScout, validate readiness with QStrike, or plan your migration with QSolve.