Skip to content
Vol. 1 · Ed. 2026
CyberGlossary
Entry № 951

Post-Quantum Cryptography

Reviewed byCybersecurity entrepreneur & security researcher

What is Post-Quantum Cryptography?

Post-Quantum CryptographyClassical cryptographic algorithms designed to remain secure against attacks by both classical and large-scale quantum computers.


Post-Quantum Cryptography (PQC) is a class of public-key algorithms whose security relies on problems believed to resist polynomial-time quantum algorithms like Shor's, such as lattice problems (LWE, NTRU), code-based problems (McEliece), multivariate quadratic systems, isogenies, and hash-based signatures. Following its 2016–2024 competition, NIST has standardized ML-KEM (FIPS 203, lattice-based key encapsulation derived from CRYSTALS-Kyber), ML-DSA (FIPS 204, lattice signatures based on CRYSTALS-Dilithium) and SLH-DSA (FIPS 205, hash-based signatures from SPHINCS+); FN-DSA (Falcon) is in draft. PQC is being deployed today in hybrid TLS (X25519+ML-KEM-768), SSH, IPsec, and signing infrastructures because of "harvest now, decrypt later" risks. PQC complements rather than replaces symmetric primitives like AES-256 and SHA-3, which only require larger parameters to remain secure against Grover-style speed-ups.

Examples

  1. 01

    Chrome, Cloudflare, and AWS deploying hybrid X25519+ML-KEM-768 key exchange in TLS 1.3.

  2. 02

    OpenSSH using ML-KEM and Streamlined NTRU Prime hybrid key exchange for SSH connections.

Frequently asked questions

What is Post-Quantum Cryptography?

Classical cryptographic algorithms designed to remain secure against attacks by both classical and large-scale quantum computers. It belongs to the Cryptography category of cybersecurity.

What does Post-Quantum Cryptography mean?

Classical cryptographic algorithms designed to remain secure against attacks by both classical and large-scale quantum computers.

How do you defend against Post-Quantum Cryptography?

Defences for Post-Quantum Cryptography typically combine technical controls and operational practices, as detailed in the full definition above.

What are other names for Post-Quantum Cryptography?

Common alternative names include: PQC, Quantum-resistant cryptography.

Related terms

See also