CodeClarityLab / Glossary
Ctrl K
← Home ← Codex ← DEBT
Browse by Category
+ added · updated 7d
Pages
Terms of Use About Contribute 🧠Logic graph Contact
← Back to glossary

Post-Quantum Cryptography

Cryptography Advanced
debt(d9/e7/b7/t9)
d9 Detectability Operational debt — how invisible misuse is to your safety net

Closest to 'silent in production until users hit it' (d9). detection_hints.automated is 'no' — no tool flags RSA/ECC usage as quantum-vulnerable; the risk is invisible until quantum computers exist or harvest-now-decrypt-later attacks succeed years later.

e7 Effort Remediation debt — work required to fix once spotted

Closest to 'cross-cutting refactor across the codebase' (e7). quick_fix describes migrating to hybrid encryption across all cryptographic touchpoints — key exchange, signatures, certificate chains — touching every place crypto is used, not a single component.

b7 Burden Structural debt — long-term weight of choosing wrong

Closest to 'strong gravitational pull' (b7). Crypto algorithm choices applied across web/cli contexts shape protocols, key storage, certificate handling; common_mistakes notes hard-coded algorithm choices make future migration difficult — crypto-agility burden affects every change.

t9 Trap Cognitive debt — how counter-intuitive correct behaviour is

Closest to 'catastrophic trap' (t9). The misconception is precisely that PQC is irrelevant until quantum computers exist — the 'obvious' wait-and-see approach is always wrong because harvest-now-decrypt-later means today's RSA-encrypted long-lived secrets are already compromised.

About DEBT scoring → scored by claude-opus-4-7 · 2026-05-11 · reviewed by human

Also Known As

PQC quantum-safe cryptography CRYSTALS-Kyber NIST PQC quantum resistant

TL;DR

CRYSTALS-Kyber (ML-KEM) and CRYSTALS-Dilithium (ML-DSA) standardised by NIST in 2024 — designed to resist attacks from quantum computers.

Explanation

Quantum computers running Shor's algorithm can break RSA and ECC (the basis of current TLS) in polynomial time. NIST 2024 standards: ML-KEM (Kyber — key encapsulation, replaces ECDH), ML-DSA (Dilithium — digital signatures, replaces ECDSA/RSA), FALCON (compact signatures), SPHINCS+ (hash-based, conservative choice). Harvest now, decrypt later: adversaries collect encrypted traffic today to decrypt once quantum computers exist — a real threat for data that must remain confidential for 10+ years. OpenSSL 3.x with the OQS provider supports PQC algorithms.

Common Misconception

Post-quantum cryptography is only relevant after quantum computers exist — harvest-now-decrypt-later attacks mean data encrypted today must be quantum-safe if it needs to remain confidential for 10+ years.

Why It Matters

Medical, government, and financial records encrypted with RSA today may be decryptable by quantum computers in 2035 — migrating to post-quantum algorithms now protects long-lived sensitive data.

Common Mistakes

  • Waiting for quantum computers to appear before starting migration
  • Not considering hybrid classical+PQC algorithms — use both during transition
  • Using AES-128 instead of AES-256 — Grover's algorithm halves effective key size
  • Hard-coded algorithm choices that make future migration difficult

Code Examples

✗ Vulnerable 
// RSA key exchange — vulnerable to future quantum attack:
$key = openssl_pkey_new(['private_key_bits' => 2048, 'private_key_type' => OPENSSL_KEYTYPE_RSA]);
// Current security: excellent
// Security in 2035 when quantum computer exists: zero
// Data encrypted today: potentially decryptable then
✓ Fixed 
// Cryptographic agility interface — enables algorithm swap:
interface KeyExchange {
    public function generateKeyPair(): KeyPair;
    public function encapsulate(PublicKey $pk): array;
}
// Today: implement with X25519 (classical)
// Migration path: swap to X25519+Kyber (hybrid)
// No application code changes needed
Added 16 Mar 2026
Edited 22 Mar 2026
Views 54

Curated in Warsaw under one editorial standard. 1,506 terms, single voice.  About this reference →

Rate this term
No ratings yet
🤖 AI Guestbook educational data only
| |
Last 30 days
1 ping T 0 pings W 1 ping T 0 pings F 0 pings S 0 pings S 0 pings M 0 pings T 0 pings W 0 pings T 2 pings F 2 pings S 2 pings S 2 pings M 0 pings T 0 pings W 1 ping T 1 ping F 2 pings S 0 pings S 0 pings M 0 pings T 0 pings W 0 pings T 1 ping F 0 pings S 1 ping S 1 ping M 0 pings T 0 pings W
Agents 0
No pings yet today
No pings yesterday
Amazonbot 10 Scrapy 8 Google 5 Ahrefs 4 Perplexity 3 Unknown AI 3 SEMrush 3 Claude 2 Bing 2 ChatGPT 2 Meta AI 1 PetalBot 1
Also referenced
Asymmetric Encryption 58 Cryptographic Hash Functions 56 TLS Handshake 52 Encryption in Transit 51
How they use it
crawler 39 crawler_json 5
Related categories
networking 1k cryptography 809
DEV INTEL Tools & Severity
🔵 Info ⚙ Fix effort: High
⚡ Quick Fix
Start migrating to hybrid encryption: use both classical (AES-256) and post-quantum algorithms together — NIST standardised ML-KEM (Kyber) and ML-DSA (Dilithium) in 2024 for key encapsulation and signatures
📦 Applies To
any web cli
🔗 Prerequisites
🔍 Detection Hints
RSA or ECC used for long-term key protection of sensitive data that must remain secret for 10+ years; no post-quantum migration plan
Auto-detectable: ✗ No
⚠ Related Problems
🤖 AI Agent
Confidence: Low False Positives: Medium ✗ Manual fix Fix: High Context: File Tests: Update
CWE-327
✓ schema.org compliant