The PKI Consortium is managing a PQC Capabilities Matrix (PQCCM) of software applications, libraries and hardware that includes support for Post Quantum Cryptography, without endorsing their implementation or quality.
The list includes a wide variety of software applications, libraries, and hardware from different vendors. The list should be considered a living document and a starting point. Considering the rapid change in the area such things can vary from day to day and complete freshness of information can only be gathered from vendors directly.
The PKI Consortium is actively working to promote the adoption of Post-Quantum Cryptography, and the capabilities matrix is a key part of that effort.
What the PQCCM does:
- collects and aggregates information on PQC capabilities across the cybersecurity landspace (vendors, software, hardware, etc..)
- lists products that provide PQC functionality to the end user, not merely for example PQC enabled TLS access to a non PQC enabled service
No other activities besides those listed above are under the purview of PKI Consortium (unless explicitly stated otherwise).
What the PQCCM doesn’t do:
- review, vet, verify or test implementations or interoperability
- perform source code review, formal review of algorithms, etc.
- provide information, documentation or any recommended usage of Post Quantum Cryptography
Contribute
This list is a collaborative effort. To contribute please:
- Create an issue on GitHub.
- Create a pull request on GitHub.
- Participate in PKIC and the PQC working group and send an email to the list.
Legend
| Symbol | Meaning | Comment |
|---|---|---|
| ❌ | The feature is currently not available | |
| ✔️ | The feature is available for usage/test now | |
| 🕐 | The feature is planned on the product roadmap in the coming six months | Roadmap items must not be added if they are not really scheduled to be implemented in the coming six month period. Roadmap items should be noted in the vendor section with a specific time, i.e. “Q2 2023” or similar. |
| N/A | Not applicable | The feature is not applicable for this type of product, it can for instance be a product that implements cryptographic algorithm where certificate generation is not applicable |
Capabilities
The table lists information from vendors related to support for Post Quantum Cryptography. The list below lists algorithms standardized by FIPS. The previous list listing support for draft algorithms can now be found in on the now-archived Draft Algorithm Support page.
The list is ordered alphabetically by vendor, there is no other meaning to the order.
| Vendor | Product | Category | Last updated | X.509 Chimera/Catalyst certificates | LMS | XMSS | ML-KEM/FIPS-203 | ML-DSA/FIPS-204 | SLH-DSA/FIPS-205 |
|---|---|---|---|---|---|---|---|---|---|
| Ascertia | ADSS PKI Server | PKI | 2025-08-12 | ❌ | ❌ | ❌ | ✔️ | ✔️ | 🕐 |
| Ascertia | ADSS Signing Server | Signing sw | 2025-08-12 | ❌ | ❌ | ❌ | ✔️ | ✔️ | 🕐 |
| Ascertia | ADSS Server/SAM | Signing sw\SAM | 2025-08-12 | ❌ | ❌ | ❌ | ✔️ | ✔️ | 🕐 |
| ANKATech | ANKASecure | API | 2025-05-30 | ❌ | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ |
| AppViewX | AVX ONE PKIaaS | PKI | 2025-04-21 | ✔️ | 🕐 | 🕐 | ❌ | ✔️ | ✔️ |
| AWS | AWS KMS | HSM | 2025-09-02 | N/A | ❌ | ❌ | ❌ | ✔️ | ❌ |
| BERTEN | MLDS-B235 | IP Core | 2025-11-12 | ❌ | ❌ | ❌ | ❌ | ✔️ | ❌ |
| BERTEN | MLKE-B135 | IP Core | 2025-11-12 | ❌ | ❌ | ❌ | ✔️ | ❌ | ❌ |
| Botan | Botan | Sw library | 2025-02-27 | ❌ | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ |
| Bouncy Castle | BC | Sw library | 2025-02-27 | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ |
| CAST Inc | KiviPQC-KEM | IP Core | 2025-11-12 | ❌ | ❌ | ❌ | ✔️ | ❌ | ❌ |
| Codegic | Khatim PKI Server | PKI | 2025-08-25 | ❌ | ❌ | 🕐 | 🕐 | ✔️ | 🕐 |
| Codegic | Khatim Sign Server | Signing sw | 2025-08-25 | ❌ | ❌ | 🕐 | 🕐 | ✔️ | 🕐 |
| Cryptomathic | CrystalKey 360 | KM & Signing Ssw | 2025-08-14 | N/A | ✔️ | ✔️ | 🕐 | ✔️ | ❌ |
| CryptoNext Security | Quantum-Safe Library | Sw Library | 2025-12-15 | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ |
| Crypto4A | QxEDGE | HSP | 2025-02-27 | N/A | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ |
| Crypto4A | QxHSM | HSM | 2025-02-27 | N/A | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ |
| CZERTAINLY | CZERTAINLY | PKI | 2025-06-22 | ✔️ | ❌ | ❌ | ✔️ | ✔️ | ✔️ |
| Dell Technologies | BSAFE™ Crypto Module for C | Sw library | 2025-10-28 | N/A | ✔️ | ❌ | 🕐 | ✔️ | ❌ |
| Dell Technologies | BSAFE™ Crypto-J | Sw library | 2025-10-28 | ❌ | ✔️ | ❌ | 🕐 | ✔️ | ❌ |
| DigiCert | Private CA | PKI | 2025-06-05 | ❌ | ❌ | ❌ | ❌ | ✔️ | ✔️ |
| DigiCert | Software Trust Manager | Signing sw | 2025-06-05 | ❌ | ❌ | ❌ | ❌ | ✔️ | ✔️ |
| DigiCert | Trust Lifecycle Manager | CLM | 2025-06-05 | ❌ | ❌ | ❌ | ❌ | ✔️ | ✔️ |
| DigiCert | Device Trust Manager | IoT device mgmt | 2025-06-05 | ❌ | ❌ | ❌ | ❌ | ✔️ | ✔️ |
| DigiCert | TrustCore SDK | Sw library | 2025-06-05 | ❌ | ❌ | ❌ | ✔️ | ✔️ | ✔️ |
| Entrust | nShield | HSM | 2025-03-01 | N/A | ❌ | ❌ | ✔️ | ✔️ | ❌ |
| essendi it GmbH | essendi xc | CLM | 2025-05-21 | ❌ | ❌ | ❌ | 🕐 | ✔️ | 🕐 |
| EVERTRUST | STREAM/HORIZON | PKI | 2025-03-03 | ✔️ | ❌ | ❌ | 🕐 | ✔️ | 🕐 |
| Eviden | IDnomic PKI | PKI | 2025-03-05 | ❌ | ❌ | ❌ | ✔️ | ✔️ | ❌ |
| Eviden | Trustway Proteccio™ NetHSM | HSM | 2024-12-09 | N/A | ❌ | ❌ | ✔️ | ✔️ | ✔️ |
| ExeQuantum | ExeQuantum | API | 2025-04-29 | ❌ | ❌ | ❌ | ✔️ | ✔️ | ✔️ |
| Fortanix | DSM | HSM | 2025-02-27 | N/A | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ |
| FutureX | CryptoHub HSM | HSM, PKI | 2025-12-10 | ✔️ | ❌ | ❌ | ✔️ | ✔️ | ✔️ |
| I4P | Trident | HSM | 2025-04-16 | N/A | ❌ | ❌ | ✔️ | ✔️ | ✔️ |
| InfoSec Global | AgileSec Analytics | CPM | 2025-02-27 | ❌ | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ |
| IP Cores Inc | PQC1 | IP Core | 2025-11-10 | ❌ | ❌ | ❌ | ✔️ | ✔️ | ❌ |
| Keyfactor | SignServer | Signing sw | 2025-02-27 | ❌ | ✔️ | ❌ | ❌ | ✔️ | ✔️ |
| Keyfactor | EJBCA | PKI | 2025-05-22 | ✔️ | ✔️ | ❌ | ✔️ | ✔️ | ✔️ |
| Keyfactor | Command | PKI | 2025-06-23 | ✔️ | ❌ | ❌ | ❌ | ✔️ | 🕐 |
| MTG | CARA | PKI | 2026-01-08 | ❌ | ❌ | ❌ | ❌ | ✔️ | ✔️ |
| MTG | CLM | PKI | 2026-01-08 | ❌ | ❌ | ❌ | ❌ | ✔️ | ✔️ |
| Microsoft | SymCrypt/Windows/.NET | Sw library/OS | 2026-02-10 | ❌ | ❌ | ❌ | ✔️ | ✔️ | ❌ |
| Nexus Group | Certificate Manager | PKI | 2025-07-14 | 🕐 | ❌ | ❌ | ✔️ | ✔️ | ✔️ |
| Open Quantum Safe | liboqs | Sw library | 2025-05-27 | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ | ❌ |
| OpenSSL | libssl | Sw library | 2025-04-15 | ❌ | ❌ | ❌ | ✔️ | ✔️ | ✔️ |
| PQ Code Package | PQCP | Sw library | 2025-06-24 | N/A | ❌ | ❌ | ✔️ | ✔️ | 🕐 |
| PQShield | UltraPQ-Suite | IP Core and Sw library | 2025-11-12 | ❌ | ❌ | ❌ | ✔️ | ✔️ | ❌ |
| Resquant | Customizable Cryptography Accelerator | IP Core | 2025-11-12 | ❌ | ❌ | ✔️ | ✔️ | ✔️ | ✔️ |
| SafeLogic | CryptoComply PQTLS | Sw Library | 2025-03-31 | ❌ | ❌ | ❌ | ✔️ | ❌ | ❌ |
| Secure-IC | Securyzr | IP Core | 2025-11-12 | ❌ | ❌ | ✔️ | ✔️ | ✔️ | ❌ |
| Securosys | Primus HSM | HSM | 2025-02-27 | N/A | ✔️ | ✔️ | ✔️ | ✔️ | ✔️ |
| Smallstep | step-ca | PKI | 2025-10-02 | ❌ | ❌ | ❌ | ✔️ | ❌ | ❌ |
| Thales | Luna | HSM | 2025-06-30 | N/A | ✔️ | ❌ | ✔️ | ✔️ | ❌ |
| Utimaco | uTrust | HSM | 2025-09-02 | N/A | ✔️ | ❌ | ✔️ | ✔️ | ❌ |
| Xiphera | xQlave | IP Core | 2025-11-12 | ❌ | ❌ | ❌ | ✔️ | ✔️ | ❌ |
NOTE: HSS and XMSSMT are the multi tree variants of LMS and XMSS. In the table both the simple and multi-tree versions may be supported if LMS/XMSS is checked.
ADSS Server
ADSS Server is a modular trust services platform that offers PKI and digital signature services. The following services offer support for Post-Quantum algorithms.
ADSS Signing Server
ADSS Signing Server performs server side signing and eSealing, ADSS Signing Server support’s ML-KEM/FIPS-203, and ML-DSA/FIPS-204, PKCS#1 and CMS signatures. The ADSS Server Signing Service will support SLH-DSA/FIPS-205 in the 2nd half of 2025.
ADSS SAM Service
The ADSS SAM Server performs eIDAS compliant remote authorised server side signing and eSealing supports ML-KEM/FIPS-203, and ML-DSA/FIPS-204, PKCS#1 signatures. ADSS SAM Server will support SLH-DSA/FIPS-205 in the 2nd half of 2025.
ADSS PKI Server
ADSS PKI Server can create CAs and issue X.509 certificates signed using Post-Quantum algorithms. The following PQC schemes are supported:
- ML-KEM/FIPS-203
- ML-DSA/FIPS-204
- Classic McEliece
ANKATech
ANKASecure is a REST API & SaaS platform designed to implement post-quantum cryptography (PQC) in real-world applications. It provides encryption, digital signatures, and key management using a range of PQC algorithms standardized by NIST, as well as additional schemes recognized by ETSI and ENISA. AnkaSecure supports ML-KEM, ML-DSA, SLH-DSA, Falcon, LMS, and XMSS through its API. It also enables organizations to establish cryptographic sovereignty and seamlessly migrate from classical to post-quantum cryptography.
AppViewX
AppViewX - AVX ONE PKIaaS is a cloud-based PKI offering that supports the creation of CAs & issuance of X.509 certificates using post-quantum cryptographic algorithms, with current support for ML-DSA and SLH-DSA, along with the capability to issue hybrid certificates that combine classical and quantum-safe algorithms. Support for additional algorithms such as ML-KEM and composite signatures is currently under evaluation.
Ascertia
Ascertia PQC Matrix
AWS
AWS KMS have support for ML-DSA signatures.
BERTEN
BERTEN offers PQC IP Cores for FPGA and ASIC.
Botan
Botan is a C++ cryptography library released under the permissive Simplified BSD license. It offers the tools necessary to implement a range of systems, such as TLS protocol, X.509 certificates, AEAD ciphers, PKCS#11 and TPM hardware support, password hashing, and post quantum crypto schemes.
Bouncy Castle
Java and C# APIs with all NIST candidate support, and some older ones. Available as open source software. All NIST standards are available in Java from version 1.79 and C# from version 3.0.0.
The Bouncy Castle for kotlin open source package provides a script/command line interface for generating certificate chains with different algorithms, including hybrid certificates using X.509 section 9.8 alternative signatures.
CAST Inc
CAST Inc offers PQC IP Cores for FPGA and ASIC.
Codegic
Khatim PKI Server
Khatim PKI Server helps PKI admins to setup CAs and issue X.509 certificates signed using post-quantum algorithms. Also supports signing OCSP & CRL using ML-DSA. Supported from Khatim PKI Server 5.0. ML-KEM, SL-DSA is scheduled.
Khatim Sign Server
Khatim Sign Server performs server side signing using post-quantum signatures for PKCS#1 signatures. Support for PQC started from Khatim Sign Server 5.0. SL-DSA is scheduled.
Khatim Timestamp Server
Khatim Timestamp performs timestamp generation using ML-DSA. Support for PQC started from Khatim Timestamp Server 5.0. SL-DSA is scheduled.
Cryptomathic
CrystalKey 360 is a crypto-agile key management and data security platform supporting full key lifecycle management and signing for both classical and post-quantum algorithms. Current capabilities include XMSS, LMS, and ML-DSA, with ML-KEM planned.
CryptoNext Security
CryptoNext Security is a software vendor specialized in post-quantum cryptography.
CryptoNext Quantum Safe Library & SDK
The CryptoNext Quantum Safe Library & SDK is a secure post-quantum cryptographic library in C language with multi-language wrappers (Rust, Python, Java) and specific environment portability (low memory, secure hardware). It supports all standardized algorithms support (NIST & ISO) and provides implementation, build and side-channel protections.
CryptoNext COMPASS
CryptoNext COMPASS is a cryptography discovery and inventory platform to accelerate PQC migration.
CryptoNext CAPTAIN
CryptoNext CAPTAIN is a cryptographic management framework to provide centralized crypto-agility across all applications.
Crypto4A
Crypto4A Technologies Inc. develops the crypto-agile and quantum-safe security products sold as the QxHSM™, a hardware security module (HSM) and the QxEDGE™, a hardware security platform (HSP). For more information about those products as well as the status of our FIPS 140-3 validation or CAVP algorithm list, please visit [www.crypto4a.com].
CZERTAINLY
Open source CZERTAINLY platform implements post-quantum cryptography algorithms support for certificate, cryptographic key, and digital signature lifecycle management and automation, including support for alternative extensions in X.509 certificates as per ITU-T X.509 section 9.8. The platform supports ML-DSA, ML-KEM, and SLH-DSA algorithms. FN-DSA has experimental support and expected to be available once the standards are finalized.
Dell Technologies
Dell Technologies owns and develops Dell BSAFE™ Crypto Module for C and Dell BSAFE™ Crypto-J software cryptographic modules. These modules are used within different Dell Technologies server, storage and networking offerings, and other customer solutions to provide FIPS 140-3 validated cryptography. The modules also provide cryptograhic implementations for the BSAFE™ TLS libraries, namely BSAFE™ TLS-C and BSAFE™ SSL-J.
DigiCert
DigiCert, a provider of PKI and Digital Trust solutions, supports NIST-approved PQC algorithms throughout its platform and solutions. The DigiCert ONE platform and solutions support ML-DSA, SLH-DSA, with ML-KEM and FN-DSA support coming soon. DigiCert also supports non-standardized algorithms at [labs.digicert.com].
Entrust
nShield
The Entrust nShield Post-Quantum SDK enables post-quantum cryptographic applications for nShield HSMs with the CodeSafe SDK.
essendi it GmbH
essendi it GmbH provides essendi xc, a certificate management system that automates the lifecycle of digital certificates (CLM). The platform offers crypto agility, cryptographic inventory management, and supports organizations in the migration and transformation from classical cryptography to post-quantum cryptography (PQC). essendi xc enables the request, management, monitoring, and deployment of both classical and post-quantum certificates. ML-DSA (FIPS-204) is implemented, while ML-KEM (FIPS-203) and SLH-DSA (FIPS-205) are currently in development and on the product roadmap.
EVERTRUST
EVERTRUST Stream is a PKI CA/VA/TSA and EVERTRUST Horizon is a PKI RA and CLM software. Both products are currently able to issue and manage pure-PQC and hybrid backard-compatible certificates based on Dilithium/Falcon/Sphincs+ algorithms. Released versions have support for ML-DSA (with or without prehash), pure PQC certificates, and hybrid backward-compatible certificates as per ITU-T X.509 10/19. Other algorithms and some protocol support as well as PKCS#11 support is available in beta versions, as they depend on standards that are not yet published.
Eviden
IDnomic PKI
The Eviden IDnomic PKI supports the published PQC algorithms standardized by NIST : ML-DSA and ML-KEM. Composite and pure quantum certificates hierarchies can be provided.
Trustway Proteccio™ NetHSM
The Eviden Trustway Proteccio™ NetHSM supports all common cryptographic algorithms including the PQC algorithms selected by NIST : ML-DSA, ML-KEM and SLH-DSA.
Fortanix
Fortanix DSM support all NIST-approved PQC algorithms in FX 2200, available via SaaS and on-prem appliances. It enables enterprises to adopt quantum-safe cryptography today with PKI support, including CA creation and X.509 certificates. Fortanix Key Insight provides key discovery and visibility, aiding PQC readiness.
FutureX
Futurex offers a crypto-agile HSM and key management platform built for high performance and seamless migration to post-quantum cryptography. Our solution supports ML-DSA, ML-KEM and SLH-DSA in hybrid deployment mode. We provide full lifecycle key management, certificate issuance (including hybrid certificates), and operational support across on-prem, cloud, and virtualized environments.
I4P
Trident HSM is a general purpose network HSM developed by I4P that received the Common Criteria (CC) EAL4+ (EN 419221-5 as well as EN 419241-2) certification.
Cryptographic applications are enabled to use Post-Quantum algorithms even in the CC restricted mode that helps with using hybrid solutions and the transition to PQC.
IP Cores Inc
IP Cores Inc offers PQC IP Cores for FPGA and ASIC.
Keyfactor
SignServer
SignServer performs server side signing and is capable of post-quantum signatures on CMS (RFC5662) messages as well as plain signatures. Available as open source software and containers with support for LMS, SLH-DSA and ML-DSA from SignServer 7.1.
EJBCA
EJBCA PKI can create CAs and issue pure and hybrid X.509 certificates signed using post-quantum algorithms. Available as open source software and containers with support for LMS, ML-DSA and ML-KEM from EJBCA 9.1, and SLH-DSA from version 9.3.
Command
Command 25.2 is an enterprise CLM platform that can issue and manage post-quantum certificates. Available as a cloud-hosted offering, or installable in on-prem environments. Features support for hybrid and ML-DSA certificates, with upcoming SLH-DSA support in 25.3.
MTG AG
MTG Corporate PKI consists of the two product components MTG Certificate Authority (MTG CARA) and MTG Certificate Lifecycle Manager (CLM). Official MTG CARA and CLM releases feature the PQC algorithms ML-DSA and SLH-DSA. Support for ML-KEM, hybrid algorithms, LMS, and XMSS is planned to be added in the course of 2026.
Microsoft
Post-Quantum Cryptography (PQC) algorithms are now generally available in the cryptographic library SymCrypt, Windows Server 2025 and Windows 11 clients and .NET 10.
Nexus Group
Certificate Manager
Nexus Certificate Manager supports signing CA and X.509 certificates using ML-DSA and SLH-DSA algorithms from version 8.12 CM. ML-KEM supported from CM 8.13.
OpenSSL
OpenSSL is an open source software library that implements PQC algorithms from version 3.5.
Open Quantum Safe
OQS is an open source software library that implements PQC algorithms, as well as integrations such as into OpenSSL.
PQ Code Package
PQ Code Package is a collection of open source projects aiming to build high-assurance software implementations of standards-track post-quantum cryptography algorithms. The PQCP is a project within the Linux Foundation as part of the Post-Quantum Cryptography Alliance.
PQShield
PQShield offers PQC Software and IP Cores for FPGA and ASIC.
Resquant
Resquant offers PQC IP Cores for FPGA and ASIC.
SafeLogic
CryptoComply PQ-TLS provides a drop-in TLS solution. It leverages SafeLogic’s CAVP-certified implementation of the ML-KEM algorithm to enable quantum-resistant TLS connections.
Secure-IC
Secure-IC offers PQC IP Cores for FPGA and ASIC.
Securosys
Primus HSM, Primus X Cyber Vault and HSM as-a-service supports all common cryptographic algorithms, blockchain procedures including the PQC algorithms selected by NIST. Devices are under certification for FIPS140-3 Level 3 and CC EN 419221-5 (eIDAS protection profile).
Smallstep
Smallstep offers open source and commercial PKI software with SaaS, self-hosted, and on-prem options.
Thales
Luna HSM support PQC algorithm, including ML-DSA and ML-KEM since firmware version 7.9.0.
Utimaco
uTrust Identify have Quantum Protect firmware. Software simulator available.
Xiphera
Xiphera offers PQC IP Cores for FPGA and ASIC.
References
The following table contains references to the PQC capabilities and algorithms.
Draft Algorithm Support (Archived) - PQC Capabilities Matrix (PQCCM)
Draft Algorithm Support (Archived)
This page is an archive of support for draft PQC algorithms, before standardization was completed. Most products remove support for the draft algorithms as standard algorithms are implemented.
