Security vendors including Palo Alto Networks, Cisco, IBM, Cloudflare, and SandboxAQ are racing to offer post-quantum cryptography (PQC) readiness solutions as the 'harvest now, decrypt later' threat model makes quantum risk an immediate concern rather than a future one. The core challenge is that most enterprises lack visibility into where cryptography is used across their infrastructure. Vendor approaches vary: IBM builds cryptographic bills of materials via static analysis and runtime monitoring, Cisco focuses on network-layer discovery and legacy system abstraction, Cloudflare secures connections at the edge, and SandboxAQ offers continuous monitoring via AQtive Guard. NIST has finalized PQC algorithms and recommends full readiness by 2030, but interoperability gaps and performance trade-offs remain. Analysts warn that with quantum-capable attacks potentially arriving around 2029, migration work must begin now, and crypto-agility must be treated as an ongoing discipline rather than a one-time project.
Sort: