Nation-state actors are archiving your encrypted traffic today, waiting for quantum computers to decrypt it, a threat CISA calls Harvest Now, Decrypt Later (HNDL). Federal mandates require full post-quantum cryptographic (PQC) migration by 2030. Most organizations have zero real-time visibility into their exposure.

This session demos QVault, an open-source PQC governance dashboard that uses OpenSearch as its analytics backbone. I will show how eBPF-based telemetry that captures TLS handshake algorithms and cipher suites per connection is indexed in OpenSearch in real time, and how OpenSearch aggregations compute a live HNDL Exposure Score across an entire infrastructure estate.

Attendees will see:
- A telemetry pipeline from kernel-level eBPF probes to OpenSearch indices
- Real-time risk scoring using bucket aggregations and scripted fields
- OpenSearch Dashboards panels for CNSA 2.0 and NSM-10 compliance tracking

No agent installation. No code changes to monitored systems. Just OpenSearch is making the invisible visible.