Resource archive

Blog

Technical explainers, migration notes, and operating guidance for teams preparing post-quantum cryptography work.

Briefings: 23
Categories: 5
Updated: June 19, 2026

The Blog collects technical explainers, migration notes, and operating guidance for teams planning post-quantum cryptography work. Start with the core pages below if you are building an inventory or preparing an internal migration brief.

Recommended starting points

Encryption — ML-KEM, ML-DSA, SLH-DSA, hybrid TLS, and standards alignment.
Defense — harvest-now-decrypt-later risk, Q-Day planning, and crypto-agility runbooks.
Solutions — sector-specific migration paths for regulated teams.
Trust center — how evidence, test vectors, and certification status should be reviewed.

Research notes and case studies are published only after review for factual accuracy, customer confidentiality, and export-control sensitivity. Press releases and approved media facts are kept separate in the Newsroom.

Latest analysis

Research notes

23 published briefs for migration planning.

Read post

Abstract hybrid TLS gateway connecting legacy services to protected infrastructure segments.

Operations

Crypto-agility is only useful when teams can operate it. A practical runbook defines owners, test vectors, rollback rules, exception handling, telemetry, and evidence that auditors can review.

Read post

Abstract encrypted traffic streams flowing into an archive with a distant quantum lattice.

Governance

Harvest-now/decrypt-later risk belongs in risk governance, but the briefing needs precision. Avoid quantum hype, separate present capture risk from future decryption capability, and anchor decisions in data lifetime.

Read post

Abstract evidence panels and standards mapping layers connected to a verification grid.

Strategy

Post-quantum migration planning starts with inventory, not algorithm selection. Teams need a practical map of certificates, libraries, protocols, keys, and data-retention exposure before they can sequence remediation.

Read post

Technical

Running ML-KEM alongside ECDH in TLS 1.3 across distributed infrastructure is straightforward in theory. This composite rollout model highlights practical planning issues around certificate chain sizes, middlebox interference, and HSM firmware constraints.

Read post

Machine identities are the hidden post-quantum migration backlog

Firmware signing in the PQC transition: the hard part is recovery

Procurement clauses for quantum-ready vendors: ask for evidence, not magic

Crypto-agility metrics boards can actually use

Data-retention triage for harvest-now-decrypt-later risk

DORA evidence and crypto-agility: what financial teams should collect in 2026

Crypto-agility runbooks for regulated infrastructure teams

How to brief risk committees on HNDL without overclaiming

Crypto inventory before PQC migration: what to count first

Hybrid TLS rollout model: lessons from a 12-month plan