QRA Questionnaire – Quantum computing AI

Quantum-Safe Readiness Assessment Questionnaire

This is structured in 5 sections, so you can both discover crypto exposure and prepare the migration roadmap.

Section A — Organization & Scope

Please enable JavaScript in your browser to complete this form.

What are your core business operations ? *

Which environments do you want covered? *

applications/services many

How many applications/services handle sensitive or regulated data? *

What compliance frameworks apply? *

Who are the technical contacts for networking, security, and infra? *

Section B — Cryptography Inventory

Please enable JavaScript in your browser to complete this form.

Which encryption libraries are used across your systems? *

Which protocols are in active use? *

Where are encryption keys stored and managed? *

What is the current key length used for RSA/ECC operations? *

Do you maintain a central certificate inventory? *

libraries encryption for

How frequently are certificates renewed and rotated? *

Are you using digital signatures ? *

Do you use or plan to use public cloud KMS *

Section C — Risk and Dependency Mapping

Please enable JavaScript in your browser to complete this form.

Are any vendors or third-party APIs dependent on your keys/certs? *

Do you use custom cryptographic implementations ? *

Are your backups and archives encrypted? *

Do you have long-term data retention obligations ? *

typical obligations crypto

What’s your typical software release cycle (for crypto updates)?

Are you aware of the “harvest-now, decrypt-later” risk? *

Have you done any internal PQC awareness or training programs? *

Section D — Operational Capabilities

Please enable JavaScript in your browser to complete this form.

Do you have DevSecOps or automated pipelines? *

Is there an existing vulnerability management process for crypto components? *

Who currently manages key rotation / cert renewal? *

Do you maintain a crypto policy document or PKI SOPs? *

Are there specific business continuity or DR plans involving encrypted backups? *

Do you use any MSPs or cloud service providers for infra? *

in-house components? infra?

Would you prefer in-house migration or a managed PQC service? *

Section E — Business Readiness & Prioritization

Please enable JavaScript in your browser to complete this form.

range org there

What business units handle the highest value or most sensitive data? *

What budget range is allocated for cybersecurity/crypto initiatives? *

How quickly would you act if a compliance/regulator mandate arrives? *

Are there upcoming audits, certifications, or digital trust programs? *

What’s the biggest challenge your org faces regarding crypto agility? *

Quantum-Safe Readiness Assessment Questionnaire

Section A — Organization & Scope

Section B — Cryptography Inventory

Section C — Risk and Dependency Mapping

Section D — Operational Capabilities

Section E — Business Readiness & Prioritization

Useful Links

Get In Touch