Organization Overview

The Post-Quantum Cryptography (PQC) Dashboard provides a comprehensive view of your organization's cryptographic posture and quantum readiness. After scanning your digital infrastructure, the dashboard consolidates critical security metrics to help you assess vulnerabilities and prepare for the quantum computing era.

A significant portion of the organization’s cryptography, configurations, and certificates are not quantum resistant, placing critical systems, sensitive data, and communications at high risk and necessitating immediate remediation. A summary combining the scan results from code, certificates, and configurations. Each section provides a brief overview and links to detailed views for the respective scan types.

Viewing the Organization Report

Prerequisite: Verify that your user role has the required ACF permission to view organization reports. To enable ACF permission, click here.

To view organization reports:

  1. Go to Menu > Quantum Trust Hub > Dashboard.
    The Quantum Trust Hub : Certificate Scan page is displayed.
  2. From the menu bar, select Organization Overview.
    The Quantum Trust Hub : Organization Overview page is displayed.

    The widgets displayed have been explained here.

Understanding the Organization OverviewDashboard

Quantum Readiness Score

The PQC Score provides an aggregate assessment of your cryptographic security posture against quantum threats. Higher scores indicate stronger quantum resistance across your infrastructure. Use this score to track progress over time and benchmark against industry standards.

PQC Score Breakdown

Score is calculated based on the Quantum readiness of the crypto categories identified across scans.

  • Quantum Resistant Crypto Categories Identified = 1 Point
  • Quantum Vulnerable Crypto Categories Identified = 0 Point

Total PQC Score = Total Quantum Resistant Crypto Categories identified / Total Crypto Categories Identified

(Higher scores indicate stronger overall organizational resilience against future quantum-based attacks.)

The threat level interpretation is therefore categorized as:

The threat level is displayed below the Gauge chart.

To read more on what the displayed threat level means and the recommended next steps, click Know more from the widget.

Cryptographic Asset Discovery Summary

Total Repositories Scanned

Total number of repositories analyzed during the scan process

Each repository is evaluated to identify cryptographic implementations, libraries, and algorithms used within the source code. The results contribute to determining the overall quantum readiness posture across the scanned repositories.

Total Cryptographic Dependencies

Represents the total count of cryptographic dependencies discovered during source code analysis. These include third-party libraries and packages that implement or utilize cryptographic functions such as. encryption, signing, or key exchange.

Total Endpoints Scanned

Indicates the total number of endpoints analyzed for cryptographic components and quantum readiness posture.

Total Applications Detected

Represents the total number of applications detected during the scan process. Each application is analyzed to identify embedded cryptographic components, libraries, and configurations that contribute to its overall quantum readiness posture.

These counts help you understand the scope of your cryptographic footprint and ensure complete coverage during scans.

Crypto Asset Summary

The Crypto Asset Summary widget provides a Visual breakdown of cryptographic assets across your organization, helping you understand where cryptography is used and identify potential areas of risk.

Use the dropdown menu in the top-right corner of the widget to update the visualization for a specific crypto asset, from the following options:

Option Description
Certificates Displays cryptographic assets related to digital certificates, including types and algorithms. X.509 certificates and TLS/SSL implementations.
Configurations Shows cryptographic elements within system or application configurations, like encryption settings and protocols.
Code Represents cryptographic components found directly in the source code, such as implemented algorithms or cryptographic libraries.

High Risk Crypto Assets

The High Risk Crypto Assets widget identifies cryptographic assets within your organization that use weak, outdated, or quantum vulnerable algorithms. These assets pose a significant security risk and require prioritization for remediation.

This widget visualizes the proportion of high-risk assets across different categories. It helps security teams focus on the most vulnerable areas of their cryptographic infrastructure.

Use the dropdown menu in the top-right corner of the widget to update the visualization for a specific crypto asset, from the following options:
Option Description
Certificates Shows certificates using weak cryptographic standards, such as short key lengths or deprecated hashing/signature algorithms.
Configurations Displays insecure cryptographic settings in system or application configurations, such as weak key exchange parameters or non-quantum resistant algorithms.
Code Identifies hardcoded or referenced cryptographic algorithms in source code that are considered insecure or obsolete.

Quantum Readiness by Protocols

The Quantum Readiness by Protocols widget provides insight into the cryptographic protocols in use across your organization and evaluates their resilience against quantum computing threats. From the above widget, it can be inferred that the scan has detected 191 protocols currently in use. The interactive legends list all the protocols in use; the value in the square brackets indicates the frequency of use for that protocol.
Use the dropdown menu in the top-right corner of the widget to update the visualization for a required quantum-safety status value, from the following options:
Option Description
All Displays the full distribution of cryptographic protocols detected across the environment, both quantum resistant and quantum vulnerable.
Quantum Resistant Filters and displays only those protocols that are designed to resist quantum attacks (e.g., using post-quantum algorithms or strong modern standards).
Quantum Vulnerable Filters and displays protocols that rely on cryptographic mechanisms known to be breakable by quantum computers (e.g., RSA, ECC < P-256, DH ≤ 2048-bit).

Applications Usage by Severity

The Applications Usage by Severity widget categorizes applications based on the severity of their cryptographic vulnerabilities across your organization's applications. This chart helps prioritize risk mitigation efforts based on the criticality of the issues identified.

The above widget shows the number of applications currently in use, as detected by the scan. The interactive legend lists the severity status and the count of applications per severity status.

Severity levels typically include:
  • Critical: High-impact vulnerabilities that pose an immediate threat to data security and require urgent remediation.
  • High: Serious weaknesses that could be exploited but may require more effort or specific conditions.
  • Medium: Moderate risks that should be addressed but are not immediately exploitable.
  • Low: Minor issues or outdated practices that may not pose immediate risk but still warrant review.

Use the dropdown menu in the top-right corner of the widget to update the visualization for a specific application.

Crypto Library Usage by Severity

The Crypto Library Usage by Severity widget provides a visual breakdown of cryptographic libraries used in applications that are consumed across your organization, categorized by the severity of vulnerabilities associated with them. This helps you identify which libraries pose the highest cryptographic risk and in which parts of the environment they are used.

The above widget shows the total number of libraries in use. The interactive legend lists the severity levels and the count of applications per severity status.

Severity Levels typically include:
  • Critical: High-impact vulnerabilities that pose an immediate threat to data security and require urgent remediation.
  • High: Serious weaknesses that could be exploited but may require more effort or specific conditions.
  • Medium: Moderate risks that should be addressed but are not immediately exploitable.
  • Low: Minor issues or outdated practices that may not pose immediate risk but still warrant review.

Use the dropdown menu in the top-right corner of the widget to update the visualization for a specific library type.

Algorithm Usage

The Algorithm Usage widget provides a comprehensive view of the cryptographic algorithms detected across your organization. It helps you understand the types of algorithms in use and their distribution across different components of your environment.

This donut chart visualization helps to identify the prevalence of specific algorithms such as RSA, AES, ECC, SHA variants, etc. and evaluate their suitability from a security and quantum-readiness perspective.

Use the dropdown menu in the top-right corner of the widget to update the visualization for a specific crypto asset, from the following options:
Option Description
All Displays the overall usage distribution of all cryptographic algorithms across all asset types
Certificates Filters and shows only the algorithms used in digital certificates (e.g., signature and key exchange algorithms)
Configurations Displays algorithms defined in application or system configurations (e.g., TLS settings, cipher suites)
Code Shows algorithms found in source code, including hardcoded cryptographic logic or library references

Certificate Readiness & Risk

The Certificate Readiness & Risk widget provides a bar chart visualization of the certificates discovered across your organization, categorized either by their quantum readiness or by the severity of cryptographic risks they pose. This widget helps prioritize certificate upgrades and guides the transition toward quantum-safe cryptographic standards.
The stacked bar chart widget shows the following two views:
Option Description
PQC Readiness Displays certificates based on their readiness for post-quantum cryptography. Categories may include quantum resistant, partially ready, or quantum vulnerable certificates, depending on algorithm strength and key size.
Severity Levels Shows certificates categorized by the severity of their cryptographic weaknesses critical, high, medium, or low based on outdated algorithms, key lengths, or insecure hashing/signature schemes.
In each view, the chart plots the number of certificates corresponding to a PQC readiness level/severity level.

Use the tabs in the top-right corner of the chart to switch between the views.