PostQuantumQuantum
What’s your Q? Quantum. AI-class exploits. The next supply-chain CVE. PostQ discovers, measures, and migrates the cryptography your stack will outlive — before the next Q-Day arrives.
Your cryptography wasn’t built for QuantumQuantum
Cryptography is invisible
Most organizations have no inventory of where RSA, ECDSA, or DH keys live. Certificates, signing keys, and encrypted stores are scattered across dozens of services — and the agents that depend on them are multiplying.
The next discontinuity is closer than you think
Quantum was the original Q-Day. Mythos-class AI now turns CVEs into working exploits in hours. Whichever discontinuity hits first, the safe interval between disclosure and patch is collapsing.
Migration without a control plane is risky
Replacing classical cryptography with hybrid or PQ algorithms can break TLS handshakes, signature verification, and key exchange. Without an inventory and a rollback path, teams stall.
Everything you need to secure cryptography for the quantum era
From discovery to enforcement, PostQ gives your team full visibility and control over cryptographic operations across every environment.
Quantum Risk Scanner
Discover all cryptographic usage across your cloud infrastructure. Identify quantum-vulnerable algorithms and generate a prioritized risk score.
- Detect RSA, ECC, DH across all environments
- Identify harvest-now-decrypt-later exposure
- Generate risk score and remediation plan
Hybrid Signing API
Drop-in API for hybrid signatures that combine classical and post-quantum algorithms. Works with your existing key management — no app rewrites required.
- Classical + PQ composite signatures
- Integrates with AWS KMS, Azure Key Vault
- No changes to existing verification code
Policy & Enforcement
Define and enforce cryptographic policies across your entire infrastructure from a central control plane. No more classical-only crypto slipping through.
- Enforce "no classical-only" rules
- Centralized governance across all environments
- Compliance reporting for NIST PQC standards
Observability Dashboard
Real-time visibility into cryptographic algorithm usage, post-quantum adoption progress, and security posture across all services.
- Track crypto usage by service and environment
- Monitor PQ migration progress over time
- Alert on algorithm downgrades
Quantum-safe in three steps
Connect your cloud environment
Deploy the PostQ agent or connect via cloud APIs. Works with Kubernetes, AWS, Azure, and GCP. Setup takes under 5 minutes.
Scan and identify cryptographic risk
PostQ maps every cryptographic algorithm in use — TLS certificates, signing keys, encrypted data stores, key exchange protocols, and more.
Enable hybrid cryptography and enforce policies
Switch to hybrid classical + PQ signatures with one click. Define enforcement policies to prevent regressions. Monitor progress in real-time.
One API call. Hybrid signatures.
PostQ’s signing API returns composite signatures that combine classical and post-quantum algorithms. Your existing verification code keeps working — quantum safety is additive, not disruptive.
- Official SDKs for JavaScript/TypeScript, Python, and .NET
- Works with existing key vaults and KMS providers
- Backward-compatible signature format
- Full OpenAPI spec and interactive documentation
import { PostQ } from "@postq/sdk";
const pq = new PostQ({ apiKey: process.env.POSTQ_API_KEY });
const { signature, algorithm } = await pq.sign({
payload: Buffer.from("transaction-data"),
algorithm: "dilithium3+ed25519",
keyId: "vault://signing/production",
});
// signature contains both classical and PQ components
// existing verification code keeps working
console.log(algorithm); // "dilithium3+ed25519"Built for modern cloud infrastructure
Find out what your Q is. Today.
Run your first scan in under 5 minutes. No credit card required. See exactly which keys, certs, and signing identities won’t survive the next Q-Day.