Post-Quantum Cryptography Playground

Explore the three NIST-standardized post-quantum cryptography algorithms interactively. See how they work step by step, from key generation to encryption and signing.

ML-KEM

Module-Lattice-Based Key Encapsulation Mechanism

FIPS 203

Key exchange based on the hardness of the Module Learning With Errors problem. Visualize lattice points, noise vectors, and polynomial ring operations.

Interactive 2D lattice visualization
Drag noise vectors to see why decryption is hard
Step-by-step polynomial ring operations
Key generation, encapsulation, decapsulation
Explore

ML-DSA

Module-Lattice-Based Digital Signature Algorithm

FIPS 204

Digital signatures using Fiat-Shamir with Aborts. Watch the commitment-challenge-response protocol with rejection sampling.

Commitment → Challenge → Response flow
Rejection sampling visualization
Sign and verify any message
Understand why aborts prevent key leakage
Explore

SLH-DSA

Stateless Hash-Based Digital Signature Algorithm

FIPS 205

Hash-based signatures with Merkle trees. Click on tree nodes to understand authentication paths and why hash-based crypto is quantum-safe.

Interactive Merkle tree with clickable nodes
Authentication path highlighting
WOTS+ hash chain visualization
Root reconstruction verification
Explore

Algorithm Comparison

Compare key sizes, security assumptions, and tradeoffs across all three standards side-by-side.

Why Post-Quantum?

Full timeline

Quantum computers threaten current public-key cryptography. See when RSA, ECC, and AES become vulnerable — and why migrating to post-quantum standards matters now.

RSA-2048Shor's Algorithm
20302035Vulnerable
ECC-256Shor's Algorithm
20302035Vulnerable
AES-128Grover's Algorithm
20402050Weakened
AES-256Grover's Algorithm
20502070Quantum-Safe
PQC StandardsNo known quantum attack
20602080Quantum-Safe