ONEKEY Ensures Transparency: Secure Encryption for Future Quantum Security

ONEKEY Ensures Transparency: Secure Encryption for Future Quantum Security

CEO Jan Wendenburg: “Many manufacturers have no insights into the encryption software used in their devices, nor an understanding of how vulnerable these systems may become in the era of quantum computing.”

Düsseldorf, May 28, 2026 — As the industry prepares for the transition to post-quantum cryptography (PQC), many manufacturers of digital devices, machines, and systems are facing a fundamental challenge that has been underestimated until now. They lack an overview of the cryptography used in their products and systems. The Düsseldorf-based cybersecurity company ONEKEY offers a solution with its Product Cybersecurity & Compliance Platform. The platform provides transparency regarding the cryptographic components within firmware, thereby laying the groundwork for a structured migration towards quantum-secure methods.

The urgency to act is increasing rapidly. Advances in quantum computing are accelerating the race between offensive and defensive cybersecurity capabilities. Technology manufacturers and government entities are investing heavily in developing powerful quantum computers. Meanwhile, a potential attack scenario that security experts have discussed for years is becoming more significant: “Harvest now, decrypt later”. In this scenario, encrypted data is intercepted and stored so that it can be compromised at a later date using more powerful decryption methods. This means that even data and processes currently considered secure could be at risk in the long term.

Shor and Grover Pose a Threat to Traditional Encryption

The technological challenge is immense. Shor’s algorithm is a quantum algorithm that factors large numbers extremely quickly. This threatens the security of commonly used asymmetric cryptosystems, such as RSA, Elliptic Curve Cryptography (ECC), and Diffie-Hellman, because it jeopardizes today’s encryption methods. The Grover algorithm is another quantum algorithm that solves unstructured search problems quadratically faster than classical computers and reduces the security of symmetric methods.

Jan Wendenburg, CEO of ONEKEY, explained that the consequences are far-reaching: “A large portion of the cryptographic methods used today will no longer be considered secure in the future. However, migrating to new, quantum-secure methods is not a short-term project but rather a multi-year transformation process with significant implications. Our platform helps create transparency today, build an inventory, and thus prepare for the migration.”

Structural Shortcoming: Lack of Transparency

At the center of the challenge lies a structural shortcoming. Manufacturers often lack detailed knowledge of which cryptographic algorithms they use, where these algorithms are implemented, which libraries are employed, and which protocols are active. This is especially true with complex products featuring long lifecycles, embedded software, and a wide variety of third-party components. Without transparency, developing a well-founded PQC strategy is practically impossible.

This is where ONEKEY comes in. The platform automatically analyzes binary firmware without requiring the source code and identifies the cryptographic elements within it at various levels. These include algorithms, cryptographic libraries, and specific implementations. The analysis is scalable across large firmware repositories and enables companies to systematically inventory their cryptographic landscape for the first time.

ONEKEY Query Language for Large Datasets

ONEKEY’s differentiating feature is the ONEKEY Query Language (OQL). It enables users to formulate targeted queries across extensive datasets and obtain precise answers. For instance, companies can use OQL to determine which products use RSA, identify potentially insecure or outdated methods, and pinpoint which components depend on specific cryptographic libraries. This comprehensive analysis provides an aggregated view across different product lines and organizational units, thereby enhancing management’s ability to guide the business.

A realistic assessment is crucial here. A fully automated Crypto-SBOM (software bill of materials)—that is, a complete list of all cryptographic components—has not yet been established across the industry. However, ONEKEY already enables a practical approach to achieving this goal. Manufacturers gain concrete, reliable insights into their cryptographic attack surface and can use them to derive prioritized measures. As Jan Wendenburg summarized: “Transparency is the essential first step on the path to PQC readiness.”

Prompt Action Is Urgently Needed

The time factor further underscores the urgency of the situation. According to a principle formulated by cryptography expert Michele Mosca, risk arises when the total duration of protecting sensitive data and migrating it exceeds the time remaining until powerful quantum computers become available. For many companies, this means: Those who wait to react until quantum-based attacks are practically possible will be too late.

In addition to taking inventory, other challenges arise. For example, quantum-secure methods often require longer key lengths and altered performance characteristics. Existing protocols must be adapted or redesigned entirely. Additionally, there is a need to understand and manage dependencies in software supply chains. Without a robust database on the cryptography in use, these tasks cannot be managed efficiently or with minimized risk.

Against this backdrop, a pragmatic approach is becoming increasingly important. Rather than waiting for future technologies, companies should start analyzing their current situation today and organizing it in a structured manner. This is where ONEKEY provides immediate value by helping organizations close a critical transparency gap and establish the foundation for long-term PQC migration planning.

ONEKEY is the leading European specialist in Product Cybersecurity & Compliance Management and part of the investment portfolio of PricewaterhouseCoopers Germany (PwC). The unique combination of the automated ONEKEY Product Cybersecurity & Compliance Platform (OCP) with expert knowledge and consulting services provides fast and comprehensive analysis, support, and management to improve product cybersecurity and compliance from product purchasing, design, development, production to end-of-life.

Critical vulnerabilities and compliance violations in device firmware are automatically identified in binary code by AI-based technology in minutes – without source code, device, or network access. Proactively audit software supply chains with integrated Software Bills of Materials (SBOMs) generation. “Digital Cyber Twins” enable automated 24/7 post-release cybersecurity monitoring throughout the product lifecycle.

The patent-pending, integrated ONEKEY Compliance Wizard already covers the EU Cyber Resilience Act (CRA) and requirements according to IEC 62443-4-2, ETSI EN 303 645, UNECE R 155 and many others.

The Product Security Incident Response Team (PSIRT) is effectively supported by the integrated automatic prioritisation of vulnerabilities, significantly reducing the time to remediation.