Quantum Readiness Survey

Dear Supplier, please complete the short survey capturing quantum readiness plan for all services and products offered to/consumed by Citi. For queries regarding this survey, please write to datasecurity@citi.com with email subject “[Supplier Name] – PQC readiness Survey query”.

Note: All fields are mandatory

1. Are you aware of NIST’s Post-Quantum Cryptography (PQC) standards (FIPS 203–206)?
2. Do you have a plan for migrating to PQC algorithms as guided by NIST IR 8547 ipd?
3. Which Standard NIST PQC algorithms do you currently support or plan to support in Production with Security Category/Level 5?
4. Do you still rely on SHA1 or SHA 224 in your products/services?
5. Do you still rely on symmetric encryption other than AES in your products/services?
6. When do you expect to offer Quantum resistent cryptographic solutions?
7. When will vulnerable algorithms be fully deprecated in your environment?
Vulnerable algorithms:
1) SHA 1, SHA-224
2) 3DES, DES, AES 112, AES 192
8. Are you planning FIPS 140-3 or other certifications for PQC implementations?
9. Do you have a PQC performance and Integration testing lab?

Please remember to click Send to send your information to the Citi team.