Lab
Post-quantum cryptography (NIST)
Browser-only demos for NIST-standardized post-quantum cryptography (PQC) algorithms.
Educational demo - don't copy/paste into production
What this is
A set of post-quantum cryptography (PQC) demos aligned with NIST standards. All cryptography runs locally so you can explore key encapsulation and signatures without sending data anywhere.
Who it's for
- Security teams evaluating PQC readiness.
- Platform engineers planning migration timelines.
- Builders learning modern public-key primitives.
NIST standardized algorithms
These tools cover ML-KEM (formerly CRYSTALS-Kyber), ML-DSA (formerly CRYSTALS-Dilithium), and SLH-DSA (formerly SPHINCS+). All demos run locally in your browser.
- ML-KEM (FIPS 203) is a key encapsulation mechanism, not direct encryption.
- ML-DSA (FIPS 204) and SLH-DSA (FIPS 205) are digital signature schemes.
ML-KEM
Key encapsulation + AES-GCM
Generate keys, encapsulate a shared secret, and encrypt a short message with AES-GCM.
ML-DSA
Lattice-based signatures
Sign a message, verify it, and watch verification fail after tampering.
SLH-DSA
Hash-based signatures
Explore larger signatures and slower signing with SPHINCS+ variants.
Learn
Plain-language notes
Understand the naming, tradeoffs, and privacy promises behind the demos.
Migration
Operational guidance
What PQC adoption means for protocols like HTTPS, SSH, and SMTPS.