SandboxAQ AQtive Guard

Unified Cryptography Management for the Enterprise

Cryptography is the foundation of data protection. However, it is often opaque and hard-coded in systems, making it hard to eliminate vulnerabilities, difficult to show compliance and complex to implement upgrades. SandboxAQ AQtive Guard is an end-to-end, cryptographic management platform that provides a full inventory of existing cryptography use, including vulnerability and compliance analysis, as well as a path to centrally-managed, robust and agile cryptography. The result is protection from today’s attacks, as well as security against the future threat of a large-scale quantum computer. 

AQtive Guard will provide your organization with a full range of cryptographic management capabilities, including:

AQtive Guard Architecture

AQtive Guard Architecture - Remediate
AQtive Guard Architecture - Manage
AQtive Guard Architecture - Discover

AQtive Guard is Built on Three Foundational Pillars


AQtive Guard provides a first-of-its-kind, 360-degree view of your cryptography using three types of analyzers:

  • Network Analyzer captures network traffic and identifies cryptography used to protect data in transit.
  • Application Analyzer detects and records all calls to cryptographic libraries made by an application at run time, identifying vulnerabilities and policy breaches.
  • Filesystem Analyzer scans files to find and parse cryptographic objects in data at rest. 
Security Suite diagram
Learn more


The Control Center is the core of SandboxAQ AQtive Guard. It provides a comprehensive, actionable dashboard view of your cryptographic infrastructure, including artifacts, libraries, algorithms, and protocols. The Control Center also includes benchmarking tools to monitor cryptographic performance. 

  • Analyze your cryptographic inventory.
  • Cross-reference cryptographic use in your network, applications, and filesystems.
  • Identify vulnerabilities and cryptographic algorithms that do not adhere to policies such as FIPS 140-2, PCI DSS, or your own internal requirements.
  • Integrate cryptographic inventory, analysis, and alerting into your CI/CD and DevOps toolchains for application tracing and monitoring.
  • Enable remediation by integrating with JIRA, GitHub, IDE, and other DevOps issue tracking tools.
  • Monitor cryptographic performance.


Available for select preview partners, AQtive Guard will enable remediation and supervised enforcement to respond to off-policy violations. AQtive Guard will allow immediate response to vulnerabilities and out-of-policy algorithms, and remediate with real-time cryptographic algorithm and/or protocol switching, without having to re-architecture your IT, minimizing costs and time.

  • Transition your IT infrastructure to agile cryptography with supervised automation to reduce risks.
  • Easily adhere to new cryptographic requirements and switch between them without requiring additional development or maintenance.
  • Integrate and operationalize cryptography for deployment.
  • Remediate and enforce off-policy algorithms.
  • Achieve full sovereignty over your cryptography.
Learn more

Future-Proof Your Security

SandboxAQ will help you to stay ahead of the curve and protect your organization's sensitive data from both current and future cyber threats. Join Cloudera, Informatica, the U.S. Air Force, the U.S. Department of Health & Human Services, and several global banks in experiencing how AQtive Guard can help you achieve cryptographic agility.

Read the Datasheet: SandboxAQ AQtive Guard
Download the Paper: Mastering Cryptographic Asset Management
Download the Paper: Evolution of Cryptographic Key Management Best Practices
Download the Paper: The Hidden Costs of Fragmented Cryptography Management
Read our CISO Guide: Preparing for the Future of Cryptography
Watch the Webcast: The Future of Cryptography Management

The emergence of large, fault-tolerant quantum computers poses a significant threat to current public-key cryptography, leaving sensitive data and systems vulnerable to attacks. SandboxAQ was selected by the NIST's National Cybersecurity Center of Excellence for its Migration to Post-Quantum Cryptography project, which partners with industry to help the government develop best practices to transition from current public-key cryptography to post-quantum cryptography algorithms. We’ve also formed strategic alliances with leading systems integrators Accenture, Deloitte and EY to help enterprise customers securely transition to the quantum era.