Artifacts

CycloneDX CBOM

A Crypto Bill of Materials (CBOM) lists algorithms, keys, and certificates in machine-readable form — the inventory artifact GRC tools expect.

What you export

Qtangl scans export CycloneDX CBOM JSON mapping TLS endpoints, algorithms, key sizes, and vulnerability classifications to your remediation backlog.

CBOM integrates with ServiceNow, Archer, and custom CMDBs. Spreadsheets miss JWKS rotation, STARTTLS, and drift between audit cycles.

Deep dive

Extended analysis with industry context, action checklists, and Qtangl product tie-ins.

Read blog post →

What the PQ handshake appendix means for migration evidence.

Read guide →

How Qtangl scores exposure, coverage, and deadline pressure.

Read guide →

Manual crypto inventories miss drift, JWKS, and STARTTLS.

Read guide →