Hi Everyone,
You’ve probably heard about the "Harvest Now, Decrypt Later" threat, where bad actors steal encrypted data today just to unlock it once quantum computers get powerful enough. While quantum computers aren’t capable of this yet, the risk is real enough that governments are already dropping strict mandates to counter the looming threat.
In the US, we’re seeing this with H.R. 7535, which requires federal agencies to migrate to post-quantum cryptography (PQC). Across the globe, we are starting to see similar institutions following suit. The EU’s PQC Roadmap has set a deadline for member states to have transition plans by the end of 2026, and the Cyber Resilience Act is forcing manufacturers to keep a cryptographic inventory or face penalties for noncompliance.
That’s why we’re excited to announce the launch of HCL BigFix Quantum Risk Analyzer.
This is a new product that is integrated with BigFix but can also work as a standalone solution. HCL BigFix Quantum Risk Analyzer is designed to help you figure out exactly what cryptographic assets you have all across your environment, even down to the files, memory, network, and registry. It’s an automated discovery tool that finds the hidden keys, certificates, and algorithms that standard vulnerability scanners miss. It generates a "Cryptographic Bill of Materials" (CBOM) and prioritizes your risk against NIST standards, providing you with a clear map of what needs to be fixed to be safe from post-quantum cryptography.
While it is a separate product from the core BigFix platform, it leverages your existing BigFix infrastructure. You can deploy the lightweight, agentless executable using your current BigFix agent and then either pull the data directly into BigFix reports or utilize your existing SIEM platforms, such as Elastic or Splunk, for reporting.
If you want to see how ready or at-risk your environment is, please reach out to your HCL BigFix resource to schedule a demo or test-drive the new BigFix Quantum Risk Analyzer.
Best,
Jordan
Lead Product Manager II BigFix