NTRU

Quantum Unsafe

Key Exchange algorithm

This algorithm will be broken by a cryptographically relevant quantum computer. Migration is recommended.

Algorithm Details

Known Vulnerabilities

Lattice reduction (non-standardized parameter sets)

Migration Recommendation

Notes

Original NTRU submissions used non-standardized parameters. The underlying lattice problem may be quantum-resistant, but without NIST standardization and rigorous parameter selection, it is classified as unsafe. Use NIST-standardized ML-KEM instead.

Discover which algorithms your organization is using.

Run Free Assessment