Preparing legacy infrastructure for crypto-agility and post-quantum readiness.
Practical consulting for organizations that need to identify certificates, TLS dependencies, PKI risks, VPN exposure, legacy systems and RSA/ECC usage before security modernization, NIS2 readiness or future post-quantum cryptography migration.
Initial services
Certificate & TLS Inventory
Discovery of public and internal certificates, TLS versions, key types, signature algorithms, expiry dates, weak configurations and undocumented dependencies.
Legacy Crypto Exposure Review
Technical review of Windows Server, IIS, VPN, remote access, file transfer, backup and legacy application environments for outdated protocols and cryptographic dependencies.
PQC Readiness Initial Assessment
Preliminary mapping of RSA/ECC exposure, long-term confidentiality risks, vendor dependencies and practical steps toward future post-quantum cryptography migration.
NIS2 Technical Readiness Support
Infrastructure-focused support for security readiness: technical debt, identity dependencies, certificate lifecycle, legacy systems, vendor questions and modernization priorities.
Example deliverables
Certificate and TLS inventory report
A structured overview of discovered certificates, endpoints, TLS versions, key types, signature algorithms, expiry dates, ownership gaps and weak configurations.
RSA/ECC dependency map
Identification of systems, services, vendors and workflows that currently depend on RSA, ECDSA, ECDH or other quantum-vulnerable public-key mechanisms.
Legacy crypto exposure summary
A practical summary of legacy protocols, outdated platforms, unsupported systems and cryptographic dependencies that may block future security modernization.
Vendor PQC readiness questionnaire
A set of technical questions for software, hardware, cloud and security vendors about their roadmap for post-quantum cryptography, crypto-agility and protocol support.
Crypto-agility roadmap
A prioritized plan with quick wins, medium-term remediation steps and long-term recommendations for reducing dependency on hard-coded or obsolete cryptography.
Executive summary
A concise management-level summary of risks, dependencies, priorities, business impact and recommended next steps.
Approach
1. Discovery
Identify externally visible services, internal certificate usage, TLS endpoints, VPNs, PKI components and legacy systems.
2. Inventory
Create a structured inventory of cryptographic assets, algorithms, protocols, owners, vendors and operational dependencies.
3. Risk classification
Prioritize findings by exposure, business criticality, data confidentiality period, upgrade complexity and vendor dependency.
4. Roadmap
Deliver a practical modernization roadmap with quick wins, medium-term actions and long-term crypto-agility recommendations.
Background
Post Quantum Solutions is an independent consulting initiative focused on practical infrastructure readiness, crypto inventory and security modernization.
The work is based on over 25 years of experience in Windows Server administration, production infrastructure, SAN, high availability, migrations, legacy environments and troubleshooting business-critical systems.
Resources
Sample report
A sample structure for a Certificate & TLS Inventory Assessment report.
First article
Why post-quantum migration starts with crypto inventory, not with immediate algorithm replacement.
What this is not
- No custom cryptographic algorithm design.
- No unsupported production deployment of experimental PQC mechanisms.
- No legal advice or formal certification audit.
- No claim that current quantum computers can already break production RSA/ECC at scale.
Contact
For initial discussions, technical discovery or cooperation with NIS2, ISO 27001, security or infrastructure partners: