Microsoft has enabled PQC in SymCrypt-OpenSSL 1.9.0 for Linux and Windows Insiders, allowing early testing of quantum-resistant algorithms
PQC algorithms like ML-KEM (for key encapsulation) and ML-DSA (for digital signatures) are now available for evaluation in operational environments
The Cryptography API: Next Generation (CNG) is being enhanced to support PQC, replacing the older CryptoAPI for secure, flexible cryptographic operations
ML-KEM and ML-DSA offer various NIST security levels, with parameter sets for different key, ciphertext, and signature sizes
Microsoft recommends hybrid cryptography—combining PQC with traditional algorithms (e.g., RSA, ECDH, ECDSA)—for defense in depth during the transition
Windows certificate APIs and SymCrypt-OpenSSL allow testing of PQC certificate installation, import/export, and trust verification
Linux users can leverage PQC via SymCrypt provider for OpenSSL 3, including hybrid TLS key exchange for “harvest now, decrypt later” threat mitigation