Fortanix Key Insight User Interface Components - PQC Central

1.0 Introduction

This article describes the user interface (UI) features of the Post Quantum Cryptography (PQC) Central on Fortanix Key Insight.

2.0 PQC Central Overview

PQC Central is an enterprise-grade tool designed to deliver centralized real-time visualizations and analytical insights into an organization’s cryptographic key posture and quantum-related vulnerabilities. It offers a centralized dashboard with a dynamic Sunburst chart, enabling users to drill down from a high-level overview to granular details of individual cryptographic keys and services across diverse environments.

PQC Central enhances post-quantum readiness by:

• Consolidating cryptographic data across environments.

• Mapping key and service vulnerabilities.

• Providing an intuitive interface for drill-down analysis.

• Supporting compliance with emerging quantum security standards.

Key features and functionalities include the following:

• Integrated Data Sources: The PQC Central dashboard retrieves the cryptographic data from a wide range of environments to ensure complete visibility.

  • Cloud Providers: AWS KMS and Azure Key Vault

  • On-Premises Systems: Databases, file systems, and other internal resources

  • External KMS/HSM solutions: Fortanix-Data-Security-Manager (DSM), HashiCorp Vault, CyberArk, and so on.

• Visual Cryptographic Risk Analysis: A Sunburst chart structure is used to visually represent cryptographic risk. For more details on the Sunburst chart, refer to Section 5.0: Sunburst Chart.

  • Top Level: Overall cryptographic health and organizational posture.

  • Middle Level: Cryptographic usage breakdown by environment (cloud, on-prem, external key source).

  • Bottom Level: Quantum vulnerability of individual keys or services.

• Risk Posture Calculation and Alerts

  • Quantum Readiness Score: A calculated metric that reflects the percentage of keys resistant to quantum attacks.

  • Alerting Mechanism: Highlights high-risk assets requiring remediation

• Reporting and Compliance: Supports NIST tracking and standards at the Fortanix Key Insight level.

PQC Central will empower enterprises with a clear, actionable view of their cryptographic security posture, helping them prepare for the post-quantum era while maintaining compliance and reducing risk. The Sunburst chart visualization will provide an intuitive, drill-down approach to understanding vulnerabilities, ensuring teams can act on risks efficiently.

3.0 Terminology References

For Fortanix Key Insight terminologies, refer to the Fortanix Key Insight - Concepts.

4.0 Access PQC Central

Users can access the PQC Central dashboard after adding an AWS, Azure, On-Premises, or an External Key Source connections in Fortanix Key Insight.

Once a connection is onboarded, you can access the PQC Central menu in the Fortanix Key Insight left navigation panel for the following connection types:

• All Connections: The PQC Central dashboard displays PQC readiness details for all connections within your Fortanix Key Insight account.

• Individual Connections: The PQC Central dashboard also displays the PQC readiness status and associated details for the following individual connection types, provided they have been onboarded to your Fortanix Key Insight account:

  • Cloud

    • Amazon Web Services (AWS)

    • Azure

  • On-Premises

  • External Key Source

NOTE

If an individual connection or all connections in your Fortanix Key Insight account were last scanned before the KI 25.04 release and have not been rescanned, the PQC dashboard will not display any data—even when you select All Connections or a specific connection type (Cloud, On-Premises, or External Key Source) from the connection switcher. To view the latest PQC information, perform a Rescan for each connection to populate the appropriate data.

Click MANAGE CONNECTIONS to navigate to Connections page.

For more details on how to manage different connections, refer to the following:

• Cloud: Fortanix Key Insight - Getting Started With Cloud Connection

• On-Premises: Fortanix Key Insight - Getting Started With On-Premises Connection

• External Key Source: Fortanix Key Insight - Getting Started With External Key Source Connection

5.0 Sunburst Chart

A Sunburst chart is a type of circular chart that shows hierarchical data using concentric circles. It is great for visualizing how parts of a whole are nested within each other. Think of it like a multi-level pie chart.

Characteristics of a Sunburst chart:

• Hierarchical Structure: Data is organized in levels, with the root node at the centre and deeper levels extending outward in rings.

• Radial Layout: Unlike a traditional tree diagram, a Sunburst uses a circular layout, making it space-efficient and visually appealing for complex hierarchies.

• Segment Size Representation: Each segment’s size (angle and arc length) typically represents a quantitative value, such as count, size, or proportion.

• Color Coding: Different colors are often used to distinguish between categories or indicate specific values. In Fortanix Key Insight, color represents the PQC safe while, represents the PQC vulnerable status.

• Interactive Exploration (in digital formats): Sunburst charts allow users to hover, click, or zoom into segments to explore deeper levels of the hierarchy.

• Parent-Child Relationships: Each ring represents a level in the hierarchy, and each segment in an outer ring is nested under a segment in the inner ring (its parent).

6.0 PQC Central – All Connections

Select All Connections from the connection switcher to view PQC data across all connections in your Fortanix Key Insight account. The dashboard will display consolidated PQC readiness information for every onboarded connection.

The All Connections PQC Central overview page provides a summary of PQC-vulnerable and PQC-safe keys, services, and resources across all connections, as outlined in the following sections:

6.1 Post Quantum Readiness

This section provides a summary of all vulnerability parameters and displays the counts for the following:

• The percentage of your assets that are quantum safe. The percentage is represented using a color-coded scale, where all green indicates 100% PQC-safe, and all orange indicates 100% PQC-vulnerable.

  NOTE

  • The percentage is calculated for all connections or the individual connections using the following formula:

    const total = keysTotal + resourcesTotal;

    const value = keysVulnerableCount + resourcesVulnerableCount;

    Math.round(((const total - const value) / const total) * 100)

  • The formula is valid for all available values. If certain values are not applicable or unavailable, consider using 0 where appropriate.

    For example, for an external key source connection, the values of resourcesTotal and resourcesVulnerableCount will be 0.

  For example,

  Total Keys = 274

  Total Services/Resources = 114

  Total Vulnerable Keys = 85

  Total Vulnerable Services/Resources = 27

  Therefore, the percentage is (((274+114)- (85+27))/(274+114))* 100 = 71%

• Total number of vulnerable keys out of the overall key count.

• Total number of vulnerable services or resources out of the overall services or resources count.

• Total number of vulnerable connections out of the overall connection count.

• Total number of vulnerable accounts or subscriptions out of the overall account or subscription count.

6.2 PQC Vulnerability by Keys and Services or Resources

This section allows the user to view the PQC vulnerability by keys and services or resources using the Sunburst chart.

6.2.1 PQC Vulnerability by Keys

The PQC Vulnerability by Keys Sunburst chart in Fortanix Key Insight visually represents the distribution of keys across different levels of PQC readiness within your Fortanix Key Insight connections.

The chart displays the following hierarchical structure and interactive features:

• The centre of the chart represents the root level (for example, All Connections).

• Each concentric ring moves outward to represent increasing levels of granularity, displaying the following hierarchy:

  • Connection Type (Cloud, On-Premises, External Key Source)

    • Specific connections for each connection type. For example, AWS and Azure for cloud connection.

      • Individual Keys

• Hover over any segment at any level in the hierarchy to highlight its association with the parent and root nodes, along with the total count of PQC-vulnerable or PQC-safe keys, if available.

  For example, you can view the number of on-premises keys that are vulnerable.

  

• Select any root or parent node at any level within the hierarchy to view a chart specific to that parent node.

  For example, if you click On-Prem, you can see details related to the on-prem keys in a separate chart.

  NOTE

  You cannot select the lowest-level node from the centre in the hierarchy to drill down further.

• Green segments represent PQC safe (ready) keys.

• Orange segments indicate PQC-vulnerable keys.

  NOTE

  • If the entire chart is orange, all your keys are PQC-vulnerable.

  • If the entire chart is green, all your keys are PQC-safe (quantum-safe).

• Mixed segments show a combination of both, depending on the proportion of key types.

• You can drill down into specific keys to identify where vulnerabilities exist.

On the right side of the Sunburst chart, you can see the PQC readiness details for each connection with the following details:

• Cloud Connections: This section displays the following:

  • Total number of Azure and AWS connections in your Fortanix Key Insight account.

    1. Click on each connection (AWS or Azure) to view the list of onboarded AWS or Azure connections.

    2. From the list, select an AWS or Azure connection to navigate to its corresponding Services page.

    3. Click BACK TO SERVICES to navigate back.

  • Total number of vulnerable accounts and subscriptions in the cloud connections.

  • Total number of vulnerable regions in the cloud connections.

  • Total number of vulnerable keys in the cloud connections.

• On-Premises Connections: This section displays the following:

  • Total number of on-premises connections in your Fortanix Key Insight account.

    1. Click on the count of scanner connections to navigate to the list of onboarded on-premises connections.  

    2. From the list, select a on-premises connection to navigate to its corresponding Resources page.

    3. Click BACK TO RESOURCES to navigate back.

  • Total number of vulnerable keys within your on-premises connections.

• External Key Source: This section displays the following:

  • Total number of Fortanix DSM connections in your Fortanix Key Insight account. Click the external key source connection count to navigate to the list of the onboarded external key source connections.

  • Total number of vulnerable keys within your Fortanix DSM connections.

The data displayed in the right-side panel updates based on your selection or drilldown in the Sunburst chart. For example, if you select Cloud connections in the Sunburst chart, the details panel will display the following:

• Use the breadcrumbs or click the centre of the chart to navigate to the immediate parent or the main chart whenever required.

  For example, the breadcrumb is All keys / Cloud keys.

6.2.2 PQC Vulnerability by Services or Resources

The PQC Vulnerability by Services/Resources Sunburst chart in Fortanix Key Insight visually represents the distribution of services or resources across various levels of PQC readiness within your Fortanix Key Insight cloud and on-premises connections.

The chart displays the following hierarchical structure and interactive features:

• The centre of the chart represents the root level (for example, All Connections).

• Each concentric ring moves outward to represent increasing levels of granularity, displaying the following hierarchy:

  • Connection Type (Cloud, On-Premises, External Key Source)

    • Specific connections for each connection type. For example, if it is cloud, it will be AWS and Azure.

      • Individual services or resources

• Hover over any segment at any level in the hierarchy to highlight its association with the parent and root nodes, along with the total count of PQC-vulnerable or PQC-safe services or resources, if available.

  For example, you can view the number of on-premises services that are vulnerable.

  

• Select any root or parent node at any level within the hierarchy to view the chart specific to that parent node.

  For example, if you click On-Prem, you can see the details related to the on-prem resources in a separate chart.

  NOTE

  • You cannot select the lowest-level node from the centre in the hierarchy to drill down further.

  • The External connection cannot be selected, as it does not have any onboarded services or resources.

• Green segments represent PQC safe (ready) resources or services.

• Orange segments indicate PQC-vulnerable resources or services.

  NOTE

  • If the entire chart is orange, all your services or resources are PQC-vulnerable.

  • If the entire chart is green, all your services or resources are PQC-safe (quantum-safe).

• Mixed segments show a combination of both, depending on the proportion of services or resource types.

• You can drill down into specific service or resource to identify where vulnerabilities exist.

On the right side of the Sunburst chart, you can see the PQC readiness details for each connection with the following details:

• Cloud Connections: This section displays the following:

  • Total number of Azure and AWS connections in your Fortanix Key Insight account.

    1. Click on each connection (AWS or Azure) to view the list of onboarded AWS or Azure connections.

    2. From the list, select an AWS or Azure connection to navigate to its corresponding Services page.

    3. Click BACK TO SERVICES to navigate back.

  • Total number of vulnerable accounts and subscriptions in the cloud connections.

  • Total number of vulnerable regions in the cloud connections.

  • Total number of vulnerable services in the cloud connections.

• On-Premises Connections: This section displays the following:

  • Total number of on-premises connections in your Fortanix Key Insight account.

    1. Click on the count of scanner connections to navigate to the list of onboarded on-premises connections.  

    2. From the list, select a on-premises connection to navigate to its corresponding Resources page.

    3. Click BACK TO RESOURCES to navigate back.

  • Total number of vulnerable keys within your on-premises connections.

• External Key Source: This section displays the following:

  • Total number of Fortanix DSM connections in your Fortanix Key Insight account. Click the external key source connection count to navigate to the list of the onboarded external key source connections.

  • Total number of vulnerable keys within your Fortanix DSM connections.

The data displayed in the right-side panel updates based on your selection or drilldown in the Sunburst chart. For example, if you select Cloud connections in the Sunburst chart, the details panel will display the following:

• Use the breadcrumbs or click the centre of the chart to navigate to the immediate parent or to the main chart whenever required.

  For example, the breadcrumb is All Services / Resources/ Cloud services.

7.0 PQC Central – AWS Connection

Select your AWS connection from the CLOUD section of the connection switcher drop down to view its associated PQC data. The dashboard will then display the consolidated PQC readiness information for the selected connection.

The AWS PQC overview page provides a summary of PQC-vulnerable and PQC-safe keys and services within the selected AWS connection, as detailed in the following sections:

7.1 Post Quantum Readiness – AWS Connection

This section provides a summary of all vulnerability parameters for the selected AWS connection and displays the counts for the following:

• The percentage of your AWS assets that are quantum safe.

  • The percentage is represented using a color-coded scale, where all green indicates 100% PQC-safe, and all orange indicates 100% PQC-vulnerable.

• Total number of vulnerable keys out of the overall AWS keys.

• Total number of vulnerable services out of the overall AWS services.

  NOTE

  Click the number of vulnerable keys or services to navigate to their respective list view on the Keys page.

• Total number of vulnerable accounts in the selected AWS connection.

7.2 PQC Vulnerability by Keys and Services – AWS Connection

This section allows users to visualize PQC vulnerabilities by keys and services for an AWS connection using the Sunburst chart.

7.2.1 PQC Vulnerability by Keys – AWS Connection

The PQC Vulnerability by Keys Sunburst chart visually represents the distribution of keys across various levels of PQC readiness within your AWS connection.

The chart displays the following hierarchical structure and interactive features:

• Each concentric ring moves outward to represent increasing levels of granularity, displaying the following hierarchy:

  • Connection type (AWS)

    • Individual keys

• Hover over any segment at any level in the hierarchy to highlight its association with the parent and root nodes, along with the total count of PQC-vulnerable or PQC-safe keys, if available.

  For example, you can view the number of AES 256 keys that are quantum safe.

• You cannot select any node from the centre in the hierarchy to drill down further.

• Green segments represent PQC-safe (ready) keys.

• Oarnge segments indicate PQC-vulnerable keys.

On the right side of the Sunburst chart, you can see the PQC readiness details for the AWS connection with the following details:

• AWS Connection: This section displays the following:

  • Total number of AWS connections. This value is always 1, as only one connection can be selected at a time from the connection switcher drop down.

    1. Click the connection to navigate to the AWS Connection section.

    2. Select the AWS connection to navigate to its corresponding Keys page.

    3. Click BACK TO KEYS to navigate back.

  • Total number of vulnerable accounts. Click the accounts count to navigate to the accounts list.

  • Total number of vulnerable regions. Click the regions count to navigate to the regions list.

  • Total number of vulnerable keys. Click the keys count to navigate to the keys list view.

• Keys by Type: Displays a list of keys categorized by type, along with the total count for each type and their color-coded PQC readiness status.

7.2.2 PQC Vulnerability by Services – AWS Connection

The PQC Vulnerability by Services Sunburst chart visually represents the distribution of services across various levels of PQC readiness within your AWS connection.

The chart displays the following hierarchical structure and interactive features:

• Each concentric ring moves outward to represent increasing levels of granularity, displaying the following hierarchy:

  • Connection type (AWS)

    • Individual services

• Hover over any segment at any level in the hierarchy to highlight its association with the parent and root nodes, along with the total count of PQC-vulnerable or PQC-safe services, if available. For example, you can view the number of S3 services that are quantum safe.

• You cannot select the lowest-level node from the centre in the hierarchy to drill down further.

• Green segments represent PQC safe (ready) services.

• Orange segments indicate PQC-vulnerable services.

On the right side of the Sunburst chart, you can see the PQC readiness details for the AWS connection with the following details:

• AWS Connection: This section displays the following:

  • Total number of AWS connections. This value is always 1, as only one connection can be selected at a time from the connection switcher drop down.

    1. Click the connection to navigate to the AWS Connection section.

    2. Select the AWS connection to navigate to its corresponding Services list page.

    3. Click BACK TO SERVICES to navigate back.

  • Total number of vulnerable accounts. Click the accounts count to navigate to the accounts list.

  • Total number of vulnerable regions. Click the regions count to navigate to the regions list.

  • Total number of vulnerable services. Click the services count to navigate to the list view.

• Services by Type: Displays a list of services categorized by type, along with the total count for each type and their color-coded PQC readiness status.

8.0 PQC Central – Azure Connection

Select your Azure connection from the CLOUD section of the connection switcher drop down to view its associated PQC data. The dashboard will then display the consolidated PQC readiness information for the selected connection.

The Azure PQC overview page provides a summary of PQC-vulnerable and PQC-safe keys and services within the selected Azure connection, as detailed in the following sections:

8.1 Post Quantum Readiness – Azure Connection

This section provides a summary of all vulnerability parameters for the selected Azure connection and displays the counts for the following:

• The percentage of your Azure assets that are quantum safe.

  • The percentage is represented using a color-coded scale, where all green indicates 100% PQC-safe, and all orange indicates 100% PQC-vulnerable.

• Total number of vulnerable keys out of the overall Azure keys.

• Total number of vulnerable services out of the overall Azure services.

  NOTE

  Click the number of vulnerable keys or services to navigate to their respective list view on the Keys page.

• Count of the selected connection if it is identified as vulnerable.

• Total number of vulnerable subscriptions in the selected Azure connection.

8.2 PQC Vulnerability by Keys and Services – Azure Connection

This section allows users to visualize PQC vulnerabilities by keys and services for an Azure connection using the Sunburst chart.

8.2.1 PQC Vulnerability by Keys – Azure Connection

The PQC Vulnerability by Keys Sunburst chart visually represents the distribution of keys across various levels of PQC readiness within your Azure connection.

The chart displays the following hierarchical structure and interactive features:

• Each concentric ring moves outward to represent increasing levels of granularity, displaying the following hierarchy:

  • Connection type (Azure)

    • Individual keys

• Hover over any segment at any level in the hierarchy to highlight its association with the parent and root nodes, along with the total count of PQC-vulnerable or PQC-safe keys, if available.

  For example, you can view the number of RSA 4096 keys that are quantum vulnerable.

• You cannot select any node from the centre in the hierarchy to drill down further.

On the right side of the Sunburst chart, you can see the PQC readiness details for the Azure connection with the following details:

• Azure Connection: This section displays the following:

  • Total number of Azure connections. This value is always 1, as only one connection can be selected at a time from the connection switcher drop down.

    1. Click the connection to navigate to the Azure Connection section.

    2. From the list, select a connection to navigate to its corresponding Keys page.

    3. Click BACK TO KEYS to navigate back.

  • Total number of vulnerable subscriptions. Click the subscriptions number to navigate to the list.

    1. Total number of vulnerable regions. Click the regions number to navigate to the regions list.

    2. Total number of vulnerable keys. Click the keys number to navigate to the keys list view.

• Keys by Type: Displays a list of keys categorized by type, along with the total count for each type and their color-coded PQC readiness status.

8.2.2 PQC Vulnerability by Services – Azure Connection

The PQC Vulnerability by Services Sunburst chart visually represents the distribution of services across various levels of PQC readiness within your Azure connection.

The chart displays the following hierarchical structure and interactive features:

• Each concentric ring moves outward to represent increasing levels of granularity, displaying the following hierarchy:

  • Connection type (Azure)

    • Individual services

• Hover over any segment at any level in the hierarchy to highlight its association with the parent and root nodes, along with the total count of PQC-vulnerable or PQC-safe services, if available.

  For example, you can view the number of Storage Accounts services that are quantum vulnerable.

• You cannot select the lowest-level node from the centre in the hierarchy to drill down further.

On the right side of the Sunburst chart, you can see the PQC readiness details for the Azure connection with the following details:

• Azure Connection: This section displays the following:

  • Total number of Azure connections. This value is always 1, as only one connection can be selected at a time from the connection switcher drop down.

    1. Click the connection to navigate to the Azure Connection section.

    2. From the list, select a connection to navigate to its corresponding Services list page.

    3. Click BACK TO SERVICES to navigate back.

  • Total number of vulnerable subscriptions. Click the subscriptions count to navigate to the list.

  • Total number of vulnerable regions. Click the regions count to navigate to the regions list.

  • Total number of vulnerable keys. Click the keys count to navigate to the services list view.

• Services by Type: Displays a list of services categorized by type, along with the total count for each type and their color-coded PQC readiness status.

9.0 PQC Central – On-Premises Connection

Select your On-Premises connection from the ON-PREMISES section of the connection switcher drop down to view its associated PQC data. The dashboard will then display the consolidated PQC readiness information for the selected connection.

The On-Premises PQC overview page provides a summary of PQC-vulnerable and PQC-safe keys and services within the selected On-Premises connection, as detailed in the following sections:

9.1 Post Quantum Readiness – On-premises Connection

This section provides a summary of all vulnerability parameters for the selected on-premises connection and displays the counts for the following:

• The percentage of your on-premises assets that are quantum safe.

  • The percentage is represented using a color-coded scale, where all green indicates 100% PQC-safe, and all orange indicates 100% PQC-vulnerable.

• Total number of vulnerable keys out of the overall on-premises keys.

• Total number of vulnerable resources out of the overall on-premises resources.

  NOTE

  Click the number of vulnerable keys or resources to navigate to their respective list view on the Keys page.

• Count of the selected connection if it is identified as vulnerable.

9.2 PQC Vulnerability by Keys and Resources – On-Premises Connection

This section allows users to visualize PQC vulnerabilities by keys and resources for an on-premises connection using the Sunburst chart.

9.2.1 PQC Vulnerability by Keys – On-Premises Connection

The PQC Vulnerability by Keys Sunburst chart visually represents the distribution of keys across various levels of PQC readiness within your on-premises connection.

The chart displays the following hierarchical structure and interactive features:

• Each concentric ring moves outward to represent increasing levels of granularity, displaying the following hierarchy:

  • Connection type (Databases)

    • Individual keys

• Hover over any segment at any level in the hierarchy to highlight its association with the parent and root nodes, along with the total count of PQC-vulnerable or PQC-safe keys, if available.

  For example, you can view the number of AES 256 keys that are quantum safe.

• You cannot select any node from the centre in the hierarchy to drill down further.

On the right side of the Sunburst chart, you can see the PQC readiness details for the on-premises connection with the following details:

• On-Premises Connection: This section displays the following:

  • Total number of on-premises connections. This value is always 1, as only one connection can be selected at a time from the connection switcher drop down.  

    1. Click the connection to navigate On-Prem Connection section.

    2. Select the connection to navigate to its corresponding Keys page.

    3. Click BACK TO KEYS to navigate back.

  • Total number of vulnerable keys. Click the keys count to navigate to the keys list view.

• Keys by Type: Displays a list of keys categorized by type, along with the total count for each type and their color-coded PQC readiness status.

9.2.2 PQC Vulnerability by Resources – On-Premises Connection

The PQC Vulnerability by Resources Sunburst chart visually represents the distribution of resources across various levels of PQC readiness within your on-premises connection.

The chart displays the following hierarchical structure and interactive features:

• Each concentric ring moves outward to represent increasing levels of granularity, displaying the following hierarchy:

  • Connection type (Databases)

    • Individual resources

• Hover over any segment at any level in the hierarchy to highlight its association with the parent and root nodes, along with the total count of PQC-vulnerable or PQC-safe services, if available.

  For example, you can view the number of MSSQL databases that are quantum vulnerable.

• You cannot select the lowest-level node from the centre in the hierarchy to drill down further.

On the right side of the Sunburst chart, you can see the PQC readiness details for the on-premises connection with the following details:

• On-Premises Connection: This section displays the following:

  • Total number of on-premises connections. This value is always 1, as only one connection can be selected at a time from the connection switcher drop down.  

    1. Click the connection to navigate On-Prem Connection section.

    2. Select the connection to navigate to its corresponding Resources list page.

    3. Click BACK TO RESOURCES to navigate back.

  • Total number of vulnerable resources. Click the resources number to navigate to the resources list view.

• Resources by Type: Displays a list of resources categorized by type, along with the total count for each type and their color-coded PQC readiness status.

10.0 PQC Central – External Key Source Connection

Select your external key source connection from the EXTERNAL KEY SOURCE section of the connection switcher drop down to view its associated PQC data. The dashboard will then display the consolidated PQC readiness information for the selected connection.

The external key source PQC overview page provides a summary of PQC-vulnerable and PQC-safe keys within the selected external key source connection, as detailed in the following sections:

10.1 Post Quantum Readiness – External Key Source Connection

This section provides a summary of all vulnerability parameters for the selected external key source connection and displays the counts for the following:

• The percentage of your external key source assets that are quantum safe.

  • The percentage is represented using a color-coded scale, where all green indicates 100% PQC-safe, and all orange indicates 100% PQC-vulnerable.

• Total number of vulnerable keys out of the overall external key source keys.

  NOTE

  Click the number of vulnerable keys to navigate to their respective list view on the Keys page.

• Count of the selected connection if it is identified as vulnerable.

10.2 PQC Vulnerability by Keys and Services – External Key Source Connection

This section allows users to visualize PQC vulnerabilities by keys and services for an external key source connection using the Sunburst chart.

10.2.1 PQC Vulnerability by Keys – External Key Source Connection

The PQC Vulnerability by Keys Sunburst chart visually represents the distribution of keys across various levels of PQC readiness within your external key source connection.

The chart displays the following hierarchical structure and interactive features:

• Each concentric ring moves outward to represent increasing levels of granularity, displaying the following hierarchy:

  • Connection type (DSM)

    • Individual keys

• Hover over any segment at any level in the hierarchy to highlight its association with the parent and root nodes, along with the total count of PQC-vulnerable or PQC-safe keys, if available.

  For example, you can view the number of AES 256 keys that are quantum safe.

• You cannot select any node from the centre in the hierarchy to drill down further.

On the right side of the Sunburst chart, you can see the PQC readiness details for the external key source connection with the following details:

• External Key Source Connection: This section displays the following:

  • Total number of DSM connections. This value is always 1, as only one connection can be selected at a time from the connection switcher drop down.  

    1. Click the connection to navigate to the DSM Connection section.

    2. Select the connection to navigate to its corresponding Keys page.

    3. Click BACK TO KEYS to navigate back.

  • Total number of vulnerable keys. Click the keys count to navigate to the keys list view.

• Keys by Type: Displays a list of keys categorized by type, along with the total count for each type and their color-coded PQC readiness status.

NOTE

The Group by: Services radio button is disabled because there are no onboarded services available for an external key source connection.