Post-Quantum Cryptography
Migration-centric PQC notes: hybrid handshakes, performance/DoS surfaces, interop, and rollback plans under adversarial conditions.
Best starting points
PQC Research Series — Part 3
QROM is not “ROM but stronger.” It changes the oracle interface (superposition queries), breaks classical proof tactics (rewinding/programming), and turns Fiat–Shamir security into a tighter, system-bound claim.
PQC Research Series — Part 4
Reduction tightness is where PQC security meets operations: loose reductions consume margin, force parameter inflation, and turn “provably secure” into a bandwidth/RAM/latency problem.
PQC Research Series — Part 1
A formal adversary taxonomy for PQC deployments: classical vs quantum vs QROM, with explicit resource accounting (queries, memory, time) and system-boundary assumptions.
PQC Research Series — Part 2
LWE/SIS are not “magic hardness.” They are interface contracts with worst-case/average-case reductions, structural trade-offs (Ring/Module), and concrete security heuristics (BKZ/sieving) that real systems routinely violate.
Hybrid Schemes and Protocol Agility
Deep dive (April 2026): hybrid key establishment is a narrow hedge (HNDL), not “post-quantum TLS”. The hard part is suite identity, transcript binding, and AND-semantics for dual signatures.
Roadmap
- Inventory + dependency graph
- Hybrid-by-default + binding classical/PQ secrets
- Monitor interop + amplification/DoS surfaces
- Rollback and incident response for key failures