Skip to content
QuantumScanPublic scan report

Repository

aws/s2n-tls

Scanned on Jun 4, 2026

78

Risk score/ 100

High risk

Summary

The aws/s2n-tls repository contains 62 critical and 156 high-severity quantum-vulnerable cryptographic implementations across 44 files. MD5, SHA-1, and SSLv2/SSLv3 protocols pose immediate security risks, while extensive use of ECDSA, RSA-PKCS#1, and elliptic curve cryptography (P-256, P-384, P-521, X25519) creates significant post-quantum vulnerability. Migration to NIST-approved PQC algorithms is essential for long-term cryptographic resilience.

Critical

62

High

138

Medium

0

Low

0

Top findings

  • CriticalSSLv2 / SSLv3

    crypto/s2n_hmac.c:136

  • CriticalMD5

    api/unstable/fingerprint.h:169

    SHA3-256 or SHA-256

  • CriticalSSLv2 / SSLv3

    crypto/s2n_hmac.c:135

  • CriticalSSLv2 / SSLv3

    crypto/s2n_hmac.c:78

  • CriticalSSLv2 / SSLv3

    bindings/rust/extended/s2n-tls/src/enums.rs:95

+ 195 more findings in the full report

Scan your own repository

Free. Results in ~90 seconds. CBOM + DORA/NIS2 PDF included.

Start a free scan