When will Ping Identity be deprecated?

Ping Identity has not published product-specific PQC migration timelines.

Identity & Access

Is Ping Identity Quantum Safe?

Not Quantum Safe

Not yet fully quantum safe. Ping Identity (acquired by Thales in 2023) benefits from Thales's PQC research and Luna HSM PQC capabilities, but PingFederate and PingOne production services have not completed the transition to post-quantum algorithms.

Key Takeaway: Ping Identity is NOT quantum safe. Scan your Ping Identity infrastructure with QScout. Evaluate Thales Luna HSM for PQC key storage to protect signing keys. Monitor Ping Identity product announcements for PQC support.

Technical Analysis

Ping Identity is NOT fully quantum safe today, but the Thales acquisition improves its PQC outlook. **Current State:** PingFederate, PingOne, and PingAccess use classical TLS, SAML (RSA-SHA256), and OAuth/OIDC (RS256/ES256) — all vulnerable to quantum attack. **PQC Progress:** The Thales acquisition (2023) brings PQC capabilities: - **Thales Luna HSM**: Supports PQC algorithms including ML-KEM and ML-DSA for key storage. - **Thales CipherTrust**: Data protection platform with PQC research. - **PingFederate**: No public announcement of PQC signature support for SAML or OAuth tokens. - **PingOne**: Cloud identity platform uses classical cryptography. **HNDL Risk:** Same cascading identity risk as Okta and Auth0. Compromised SAML/OAuth signing keys enable forgery of authentication tokens across all federated applications. **What Organizations Should Do:** Audit all Ping Identity deployments, SAML configurations, and OAuth/OIDC integrations. Evaluate Thales Luna HSM for PQC key storage. Use QScout to discover all identity cryptographic dependencies.

Full Name	Ping Identity (Thales)
Category	identity
Quantum Vulnerability	Ping Identity SAML and OAuth use classical RSA/ECDSA signatures vulnerable to quantum attack. Thales acquisition provides PQC HSM capabilities but product integration is ongoing.
NIST Status	Thales (parent company) has NIST PQC support in Luna HSM products. Ping Identity product-level PQC deployment is not publicly confirmed.
Deprecation Timeline	Ping Identity has not published product-specific PQC migration timelines.
Replaced By	Ping Identity authentication will migrate to ML-DSA for signatures and ML-KEM for key exchange, leveraging Thales PQC capabilities

Migration Guidance

Scan your Ping Identity infrastructure with QScout. Evaluate Thales Luna HSM for PQC key storage to protect signing keys. Monitor Ping Identity product announcements for PQC support.

Related Algorithms

Okta

Okta Identity and Access Management

Auth0

Auth0 by Okta

RSA-2048

RSA with 2048-bit keys

ECDSA

Elliptic Curve Digital Signature Algorithm

X.509 Certificates

X.509 Public Key Infrastructure Certificates

How Qtonic Quantum Can Help

QScout Surface/Silver/Gold — Discover every instance of Ping Identity in your infrastructure. 7-day cryptographic inventory with HNDL exposure scoring.

Assessment Methodology — 70 security modules covering cryptographic discovery, quantum threat modeling, and migration planning.

Back to Algorithm Database — Explore 25+ cryptographic algorithms and their quantum safety status.

Don’t Know Where Ping Identity Lives in Your Stack?

QScout discovers every instance of Ping Identity across your infrastructure in 7 days — with zero operational disruption. 72-hour time to first findings.

Schedule Assessment Try Risk Calculator

Assess your quantum-vulnerable cryptography with QScout, validate readiness with QStrike, or plan your migration with QSolve.