performing-post-quantum-cryptography-migration

Featured

Assesses organizational readiness for post-quantum cryptography migration per NIST FIPS 203/204/205 standards. Performs cryptographic inventory scanning to identify quantum-vulnerable algorithms (RSA, ECDH, ECDSA), evaluates hybrid TLS configurations with X25519MLKEM768, and validates CRYSTALS-Kyber (ML-KEM) and CRYSTALS-Dilithium (ML-DSA) readiness. Implements crypto-agility assessment using oqs-provider for OpenSSL. Use when planning or executing the transition from classical to post-quantum cryptographic algorithms across enterprise infrastructure.

API & Backend 13,115 stars 1533 forks Updated today Apache-2.0

Install

View on GitHub

Quality Score: 99/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Performing Post-Quantum Cryptography Migration ## When to Use - When assessing organizational readiness for the NIST post-quantum cryptography transition - When building a cryptographic inventory to identify quantum-vulnerable algorithms across infrastructure - When evaluating hybrid TLS 1.3 configurations using X25519MLKEM768 key exchange - When testing CRYSTALS-Kyber (ML-KEM) and CRYSTALS-Dilithium (ML-DSA) algorithm support - When implementing crypto-agility to support both classical and post-quantum algorithms - When preparing migration roadmaps aligned with NIST IR 8547 deprecation timelines - When configuring oqs-provider with OpenSSL 3.x for post-quantum algorithm support ## Prerequisites - Python 3.8+ with `cryptography`, `requests`, `pyOpenSSL` libraries - OpenSSL 3.0+ (3.5+ recommended for native ML-KEM/ML-DSA support) - oqs-provider for OpenSSL (for hybrid TLS testing with older OpenSSL) - Network access to target servers for TLS assessment - Administrative access for infrastructure scanning - Familiarity with PKI, TLS, and cryptographic protocols ## Core Concepts ### NIST Post-Quantum Cryptography Standards NIST published three finalized PQC standards on August 13, 2024: | Standard | Algorithm | Renamed To | Purpose | Based On | |----------|-----------|------------|---------|----------| | FIPS 203 | CRYSTALS-Kyber | ML-KEM | Key Encapsulation Mechanism | Module lattice | | FIPS 204 | CRYSTALS-Dilithium | ML-DSA | Digital Signatures | Module lattice | | F...

Details

Author
mukul975
Repository
mukul975/Anthropic-Cybersecurity-Skills
Created
3 months ago
Last Updated
today
Language
Python
License
Apache-2.0

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Solid

pqc-evaluator

Post-quantum cryptography evaluation skill for quantum-safe migration

1,160 Updated today
a5c-ai
Code & Development Solid

cryptographic-analysis--assessment

SSL/TLS auditing, cipher suite analysis, hash algorithm identification, encryption implementation review, and cryptographic weakness detection in code

50 Updated 2 days ago
Masriyan
AI & Automation Featured

performing-cryptographic-audit-of-application

A cryptographic audit systematically reviews an application's use of cryptographic primitives, protocols, and key management to identify vulnerabilities such as weak algorithms, insecure modes, hardco

13,115 Updated today
mukul975
AI & Automation Solid

crypto-analyzer

Cryptographic implementation analysis and validation for encryption algorithms, key sizes, and certificate management

1,160 Updated today
a5c-ai
AI & Automation Featured

performing-nist-csf-maturity-assessment

The NIST Cybersecurity Framework (CSF) 2.0, released in February 2024, provides a comprehensive taxonomy for managing cybersecurity risk through six core Functions - Govern, Identify, Protect, Detect, Respond, and Recover. This skill covers conducting a maturity assessment against the CSF using Implementation Tiers to measure organizational cybersecurity posture and create improvement roadmaps.

13,115 Updated today
mukul975