>
    Strata Copilot
    Configure Asset Criticality
    Focus
    Download PDF
    Focus
    1. Home
    2. Network Security
    3. Quantum-Safe Security App
    4. Configure Asset Criticality
    Download PDF
    Network Security

    Configure Asset Criticality

    Table of Contents

    Configure Asset Criticality

    Assign a business impact rating to assets in the Quantum-Safe Security app to prioritize PQC migration based on risk exposure, compliance requirements, and business continuity needs.
    Where Can I Use This?What Do I Need?
    • NGFW (Managed by Strata Cloud Manager)
    • Prisma Access (Managed by Strata Cloud Manager)
    Asset criticality refers to how important an asset is to your organization's operations. Identifying your most critical assets helps focus your post-quantum cryptography (PQC) migration efforts. You can use this context to build a prioritized remediation roadmap, allocate resources strategically, and track risk reduction for critical assets.
    Key criteria to evaluate when assessing criticality are:
    • Operational Risk—The potential impact to business operations if the asset is compromised
    • Data Sensitivity—The type and sensitivity of data the asset handles (publicly accessible data like phone numbers compared to medical records)
    • Data Longevity—How long the data it handles must remain secure
    • Regulatory Compliance—Any legal or industry mandates tied to the asset or its data
    You can classify assets in the Quantum-Safe Security app as High or Standard business impact. Standard is the default. Business impact ratings account for differences in risk exposure. For example, in a Harvest Now, Decrypt Later attack, threat actors target assets handling sensitive, long-lived data such as financial records or protected health information (PHI). Classifying those assets as High ensures the inventory more accurately reflects their risk and your operational priorities.
    Depending on the asset type, you can configure criticality in two ways:
    • (Applications and User Devices only) Rule-Based—Define automated rules that classify assets as High business impact based on App-ID categories (for applications) or user groups (for user devices). The app compares asset metadata against selected criteria and automatically rates matching assets. You can add or remove criteria at any time. Use this method to assign criticality at scale.
    • (All Assets) ManualManually assign a business impact rating to individual assets to override a default or rule-based rating. You can assign a rating to multiple assets at once.
    The method you apply last takes precedence. For example, if a rule designates an asset as High business impact and you later manually set business impact to Standard, the Standard rating persists.
    To see the current rating for an asset, check the Business Context: Impact column of the inventory. The Business Context: Tag column displays the App-ID category, user group, or other source driving the rating. This column is blank if you have not configured rule-based criticality.
    1. Log in to Strata Cloud Manager.
    2. Select InsightsQuantum-Safe SecurityInventory.
    3. Click Configure Impact.
    4. Select an asset type: Applications or User Devices.
    5. Click Add Source, then select the data source for the asset type.
      • For Applications, select App-ID.
      • For User Devices, select User Groups.
    6. Select business-critical options.
    7. Repeat steps 4–6 for the next asset type.
    8. Save your rule.

    Assign Asset Criticality Manually

    Override the default or rule-based business impact rating for one or more assets.
    1. In the Inventory, select one or more assets.
    2. Click Modify Business Impact, then select High or Standard.
      A warning appears because this action overrides a rule or the default configuration.
    3. Click Continue to confirm your selection.

    © 2026 Palo Alto Networks, Inc. All rights reserved.