Post-quantum cryptography (PQC) is moving from evaluation to deployment as NIST finalizes standards for ML-KEM, ML-DSA, and SLH-DSA. This survey maps the space from foundations to practice. We first develop a taxonomy across lattice-, code-, hash-, multivariate-, isogeny-, and MPC-in-the-Head families, summarizing security assumptions, cryptanalysis, and standardization status. We then compare performance and communication costs using representative, implementation-grounded measurements, and review hardware acceleration (AVX2, FPGA/ASIC) and implementation security with a focus on side-channel resistance. Building upward, we examine protocol integration (TLS, DNSSEC), PKI and certificate hygiene, and deployment in constrained and high-assurance environments (IoT, cloud, finance, blockchain). We also discuss complementarity with quantum technologies (QKD, QRNGs) and the limits of near-term quantum computing. Throughout, we emphasize crypto-agility, hybrid migration, and evidence-based guidance for operators. We conclude with open problems spanning parameter agility, leakage-resilient implementations, and domain-specific rollout playbooks. This survey aims to be a practical reference for researchers and practitioners planning quantum-safe systems, bridging standards, engineering, and operations.

翻译：随着NIST完成ML-KEM、ML-DSA和SLH-DSA标准的制定，后量子密码学正从评估阶段迈向实际部署。本综述系统梳理了从理论基础到工程实践的全景框架。首先建立涵盖格基、编码、哈希、多变量、同源映射及MPC-in-the-Head等密码家族的分类体系，总结其安全性假设、密码分析进展与标准化状态。随后基于典型实现的实际测量数据，对比性能与通信开销，并重点围绕侧信道防护，评述硬件加速技术（AVX2、FPGA/ASIC）与实现安全性。在此基础上，深入探讨协议集成（TLS、DNSSEC）、公钥基础设施与证书管理规范，以及在受限与高可信环境（物联网、云计算、金融、区块链）中的部署方案。同时分析其与量子技术（量子密钥分发、量子随机数发生器）的互补关系，并评估近期量子计算的局限性。全文贯穿密码敏捷性、混合迁移策略及面向运营者的实证指导原则。最后提出涵盖参数敏捷化、抗泄漏实现及领域专用部署路线图在内的开放性问题。本综述旨在为规划量子安全系统的研究者与实践者提供连接标准制定、工程实现与运营管理的实用参考。