POST-QUANTUM CRYPTOGRAPHY · AUTOMOTIVE & MEDICAL DEVICES

Your connected devices'
cryptography will be broken.
We'll fix it before it is.

Classical cryptography in every connected vehicle and medical device becomes obsolete when a quantum computer arrives. QORONEX helps automotive OEMs, Tier‑1 suppliers, and medical device manufacturers migrate before Harvest Now, Decrypt Later attacks become visible.

Book a Free Assessment View Our Research

UNECE WP.29 R155 and FDA premarket cybersecurity guidance both require evidence of post-quantum migration planning. Your quantum-capable adversary is recording encrypted device and vehicle traffic today.

ISO/SAE 21434 · FIPS 203 · FIPS 204 · UNECE R155 · IEC 62304 · FDA 2023

SECTORS WE SERVE

Same quantum threat. Two regulated industries.

Post-quantum migration is mandatory for any embedded system that protects long-lived sensitive data. We specialise in two sectors where the consequences of delayed migration are most severe.

AUTOMOTIVE

ECU fleets, OTA pipelines, V2X infrastructure

Every OTA firmware update your vehicles have ever sent has been recorded. UNECE R155 annual review demands evidence of a post-quantum migration plan. ISO/SAE 21434 TARA was finalised before NIST published its standards — the quantum-capable nation-state adversary is not in most current TARAs.

ISO/SAE 21434 UNECE R155 AUTOSAR FIPS 203 FIPS 204
Automotive services
MEDICAL DEVICES

Implantables, connected monitors, clinical networks

Patient health information encrypted by an implantable or connected monitor has a 30-year sensitivity window. FDA premarket cybersecurity guidance (2023) flags post-quantum as an emerging requirement. MDR Article 5 requires state-of-the-art security — increasingly interpreted to include PQC readiness.

ISO 14971 IEC 62304 FDA 2023 MDR Art.5 FIPS 203 FIPS 204
Medical device services
WHAT WE DO

One toolkit. Two sectors.

TOOL

Crypto Asset Discovery

Scan every ECU binary or device firmware in your programme. CryptoBOM identifies every quantum-vulnerable algorithm, located to the binary address, classified by severity and mapped to its FIPS 203/204 replacement, before your auditors find it first.

Request access
CONSULTING

PQ-TARA Consulting

ISO/SAE 21434 threat analysis with the quantum-capable nation-state adversary your current TARA methodology does not include. UNECE R155 annual review evidence package delivered as a project output.

Scope an engagement
IN DEVELOPMENT

AUTOSAR PQC Middleware

ML-KEM-768 and ML-DSA-65 as drop-in AUTOSAR Crypto Driver modules. ARXML descriptors for DaVinci and EB tresos. ISO 26262 ASIL-B certification in progress on NXP S32K3 and STM32H5 platforms.

Join early access
SERVICES

PQC Penetration Testing

OTA firmware pipeline, BLE keyless entry, V2X and C-ITS infrastructure. We test whether your quantum migration actually holds against an adversary. Not configuration review. Active algorithmic testing against real attack vectors.

Request a test
0 NIST FIPS STANDARDS IMPLEMENTED
0 INDUSTRY VERTICALS · GROWING
0 YEARS EMBEDDED SECURITY EXPERIENCE
100% ECDSA P-256 QUANTUM EXPLOITABILITY
RESEARCH

Published findings, not promises

Open access. No login required. Covering automotive and medical device programmes.

View all research
IN PROGRESS 2026 arXiv cs.CR — expected Q2 2026

ML-KEM and ML-DSA Performance on Automotive-Grade Cortex-M7 MCUs Under AUTOSAR OS Scheduling Constraints

QORONEX LTD — Oxford, UK

Benchmark measurements for NIST FIPS 203 (ML-KEM-768) and FIPS 204 (ML-DSA-65) on the NXP S32K344 and STM32H573 microcontrollers under AUTOSAR OS scheduling conditions. Covers stack usage, code size, and cycle counts relevant to AUTOSAR integration planning. Hardware measurements in progress.

PDF available on publication — Q2 2026
PATENT PENDING 2026

CryptoBOM: Automated Cryptographic Bill of Materials for Embedded Firmware

QORONEX LTD — Oxford, UK

CryptoBOM scans automotive ECU firmware binaries and produces a structured Cryptographic Bill of Materials identifying classical cryptographic algorithms vulnerable to Shor's algorithm. YARA-based detection with Ghidra headless integration, validated against three automotive firmware targets.

Patent Pending · Full paper not available for download

The quantum threat against your devices is not theoretical.

The Harvest Now, Decrypt Later attack on your device and telematics traffic is operational today. Migration takes 18 to 36 months. The window to act is now.

Book a 30-Minute Assessment