For Security Practitioners

Implementation Guides for Quantum Readiness

Hands-on resources for security engineers, architects, and technical teams implementing cryptographic inventory, PQC migration, and quantum-safe controls.

Implementation Roadmap

Four Phases of PQC Migration

A structured approach to transitioning your organization to quantum-safe cryptography.

1

Discovery & Inventory

  • Identify all cryptographic assets
  • Map certificate dependencies
  • Document key management systems
  • Catalog encryption protocols
2

Risk Assessment

  • Classify data sensitivity
  • Evaluate quantum vulnerability
  • Assess third-party dependencies
  • Prioritize migration targets
3

Planning & Testing

  • Select PQC algorithms
  • Design hybrid implementations
  • Test in sandbox environments
  • Validate performance impact
4

Deployment & Operations

  • Execute phased rollout
  • Monitor for issues
  • Update operational procedures
  • Maintain crypto agility

Implementation Checklist

Key Technical Activities

Cryptographic Inventory

  • Scan all systems for crypto usage
  • Document TLS/SSL configurations
  • Map PKI certificate chains
  • Identify HSM deployments
  • Catalog API authentication methods

Vulnerability Assessment

  • Identify RSA/ECC key exchanges
  • Flag vulnerable hash algorithms
  • Assess key sizes and strengths
  • Review digital signature schemes
  • Check for hardcoded crypto

Migration Preparation

  • Evaluate PQC library options
  • Plan hybrid transition approach
  • Test algorithm performance
  • Validate interoperability
  • Document rollback procedures

Open Source Tools

Automate Discovery & Assessment

Free, open source scanners to automate cryptographic inventory and vulnerability assessment.

CryptoScan

Scan codebases for cryptographic vulnerabilities. Detects RSA, ECDSA, AES, and more with quantum risk classification and SARIF/CBOM output.

Source Code Scanner 50+ patterns

TLS Analyzer

Analyze TLS configurations and certificate chains. CNSA 2.0 compliance tracking, quantum risk scoring, and remediation guidance.

Network Scanner CNSA 2.0

CryptoDeps

Scan dependencies for quantum-vulnerable algorithms. Supports Go, npm, Python, and Maven packages with CBOM generation.

Dependency Scanner 4 ecosystems

All Open Source Tools

View the complete suite of QRAMM open source tools with installation guides, CI/CD integration, and comparison.

Tool Overview GitHub

Practitioner Resources

Templates & Technical Guides

Download templates and guides to support your implementation efforts.

Asset Inventory Template

Comprehensive template for documenting cryptographic assets across network, applications, PKI, HSM, IoT, and cloud.

Word Document Download

Evidence Collection Template

Structured checklist for collecting evidence across all 12 QRAMM practices with tracking and notes.

Word Document Download

QRAMM Assessment Toolkit

Full 120-question assessment with automated scoring and detailed practice-level analysis.

Excel Workbook 342 KB

Cryptographic Inventory Guide

Step-by-step guide to discovering, documenting, and managing cryptographic assets.

Learning Guide 15 min read

PQC Migration Planning

Planning and executing your organization's transition to post-quantum cryptography.

Learning Guide 20 min read

NIST PQC Standards

Understanding the new NIST post-quantum cryptography standards and their implementation.

Learning Guide 12 min read

Start Your Implementation Journey

Download the complete QRAMM toolkit with all assessment questions, templates, and automated scoring to guide your quantum readiness implementation.

Download Full Toolkit Getting Started Guide