Free tool

How ready is your organisation for post-quantum cryptography?

A 2-minute self-assessment across discovery, governance and migration planning. Answer seven questions and get an instant readiness score - no sign-up needed to see your result.

Self-assessment

Score your post-quantum readiness

Pick the answer that best describes your organisation today. Your score is calculated in your browser - nothing is sent anywhere when you submit and there are no wrong answers. This is a self-assessment of your own programme, not an output of any scan.

Question 1 of 7 - DiscoveryDo you have an inventory of the cryptography running across your estate (a CBOM)?
Question 2 of 7 - DiscoveryHave you identified which of your algorithms are quantum-vulnerable (for example RSA, ECC and Diffie-Hellman)?
Question 3 of 7 - GovernanceIs there a named owner accountable for your post-quantum migration?
Question 4 of 7 - GovernanceHave you mapped your cryptographic posture to a recognised framework (for example NIST CSF, ISO 27001 or Essential Eight)?
Question 5 of 7 - Migration planningDo you have a prioritised plan for moving to NIST post-quantum algorithms (for example ML-KEM, ML-DSA or SLH-DSA)?
Question 6 of 7 - Migration planningHow would you describe your organisation's crypto-agility - the ability to swap algorithms without re-engineering systems?
Question 7 of 7 - MonitoringDo you check for cryptographic drift - new or changed certificates, keys and algorithms appearing in your estate?

What your score means

Four tiers of post-quantum readiness

Wherever you land, the path forward is the same shape: see your cryptography, give the work an owner, then plan and sequence the migration. The tiers describe how far along that path your programme is today.

0 - 25 · Starting

Starting

Quantum risk is largely a blind spot. The first move is visibility - building an inventory of the cryptography you run so you can see where quantum-vulnerable algorithms sit.

26 - 50 · Progressing

Progressing

Awareness is there and some discovery has begun. The gap is usually ownership and governance - a named owner and a mapping to a framework that turns awareness into accountable work.

51 - 75 · Advancing

Advancing

Discovery and governance are in motion. The focus shifts to migration planning and crypto-agility - a prioritised roadmap and systems that can swap algorithms without re-engineering.

76 - 100 · Leading

Leading

A coordinated programme spans discovery, governance and migration. The work now is to sustain it - re-checking for crypto drift on a schedule and tracking progress against your framework of record.

Where EQCore fits

EQCore is built around this path. CipherScout™ discovers your cryptography into a Cryptographic Bill of Materials (CBOM), CipherForge™ (early access) turns findings into a prioritised, NIST-aligned remediation plan as a starting point for scoping migration, not a finished migration and CipherWatch™ surfaces crypto drift on every scan. Post-quantum algorithm operations run through our own PQC service.

Detailed report

Get your detailed readiness report

Your score is a quick orientation. Tell us where to send the detail and we’ll follow up with a fuller readiness report and a recommended roadmap, mapped to the frameworks that matter to you. No obligation.

Turn your score into a plan

See where post-quantum readiness sits in your own estate. Run a scoped trial and get a Cryptographic Bill of Materials (CBOM), a crypto-posture view and a sample prioritised remediation plan.