Day 1: Why Quantum Breaks Classical Crypto — Shor’s Algorithm Day 2: Grover’s Algorithm and Symmetric Crypto Day 3: Harvest Now, Decrypt Later — The Real Timeline Day 4: Lattice Problems — LWE and MLWE Day 5: NIST PQC Landscape — Standards and Candidates Day 6: SLH-DSA — Hash-Based Signatures Day 7: Challenge — Quantum Threat Assessment
Day 8: ML-KEM Conceptual Walkthrough Day 9: ML-KEM Parameters, Key Sizes, and Security Levels Day 10: ML-KEM in Rust — Key Generation with aws-lc-rs Day 11: ML-KEM Encapsulation and Decapsulation Day 12: ML-DSA Conceptual Walkthrough Day 13: ML-DSA Sign and Verify with aws-lc-rs Day 14: Challenge — PQC Key Operations Benchmark
Day 15: Why Hybrid? Cryptographic Agility and the Transition Rationale Day 16: X25519 + ML-KEM-768 Hybrid Key Exchange Day 17: IETF Hybrid TLS — Extensions and Named Groups Day 18: PQC Certificate Challenges Day 19: Composite Signatures and Dual-Algorithm Certificates Day 20: rustls with aws-lc-rs CryptoProvider Day 21: Challenge — Hybrid TLS Connection in Rust
Day 22: PKI Migration Layers Day 23: CNSA 2.0, NSM-10, and Federal Migration Timelines Day 24: AWS PQC Initiatives — s2n-tls, aws-lc, KMS, ACM Day 25: Extending toy-pki with ML-DSA Signing Day 26: Writing the Migration Roadmap Day 27: Review, Gaps, and Synthesis Day 28: Phase 3 Final Challenge