CipherChecker / Learn

Post-quantum cryptography, in plain language

A quantum computer big enough to break today's public-key cryptography doesn't exist yet — but the migration clock has already started, because encrypted data stolen today can be decrypted later. These guides explain what's at risk, why, and what to do about it. No PhD required.

What is "harvest now, decrypt later"?
Why data you encrypt today can be stolen now and read later.
Is RSA quantum-safe?
No — and here's exactly why, and what replaces it.
Is ECDSA quantum-safe?
No. The signature scheme behind TLS and most wallets.
Is X25519 quantum-safe?
Surprisingly, no — "modern" doesn't mean "post-quantum".

Want to know what's in your code?

Scan a repo →

The NIST replacements

ML-KEM (FIPS 203) for key exchange · ML-DSA (FIPS 204) and SLH-DSA (FIPS 205) for signatures — finalized by NIST in August 2024. CipherChecker maps every vulnerable primitive it finds to the right one.