Video companion
After the NIST PQC algorithms video: your ML-KEM migration checklist
NIST finalized three post-quantum standards in 2024. The near-term migration path for most teams is hybrid TLS — classical plus ML-KEM — not a big-bang algorithm swap.
The three standards that matter first
| Standard | Algorithm | Use case |
|---|---|---|
| FIPS 203 | ML-KEM | Key encapsulation (TLS key exchange) |
| FIPS 204 | ML-DSA | Digital signatures |
| FIPS 205 | SLH-DSA | Hash-based signatures (backup path) |
Google and Cloudflare already deploy hybrid ML-KEM in production TLS. Your inventory must tag which endpoints still depend on RSA or ECDSA-only handshakes.
What the video gets right
Lattice-based KEM is the primary defense against harvest-now-decrypt-later for data in transit. Hybrid modes combine classical and post-quantum key exchange so you can migrate incrementally without breaking legacy clients.
What teams still need
An inventory that answers: which load balancers terminate TLS, which certificates rotate on what cadence, and which third-party APIs you cannot control. Qtangl exports CycloneDX CBOM JSON and hybrid handshake proof traces for migration evidence.
Migration checklist
- Baseline scan — tag RSA, ECDSA, and hybrid-capable endpoints.
- Pilot hybrid TLS on internal or non-production paths first.
- Re-scan after deployment and attach proof to remediation items.
- Track readiness score trends in Monitor — crypto drifts between audit cycles.
Continue on the Q-Day hub: ML-KEM migration guide
References & further reading
Authoritative primary sources cited in this article. Summaries are our own — follow links for full context.
Last verified 2026-06-03
- FIPS 203 — Module-Lattice-Based Key-Encapsulation Mechanism (ML-KEM)NIST · 2024-08Standardized post-quantum key encapsulation (formerly Kyber).
- FIPS 204 — Module-Lattice-Based Digital Signature Standard (ML-DSA)NIST · 2024-08Standardized post-quantum digital signatures (formerly Dilithium).
- FIPS 205 — Stateless Hash-Based Digital Signature Standard (SLH-DSA)NIST · 2024-08Hash-based post-quantum signatures (SPHINCS+ family).
- Q-Day Is Coming: 5 Quantum-Safe Algorithms ExplainedYouTube · 2025Overview of NIST PQC standards including ML-KEM, ML-DSA, and SLH-DSA.
- Cloudflare targets 2029 for full post-quantum securityCloudflare · 2026Cloudflare's accelerated PQ roadmap including post-quantum authentication milestones.
See your exposure with evidence
Run a live PQC inventory scan, export a CBOM, and verify signed reports independently.