31. Security estimation and parameter selection
Covers classical and quantum attack models, lattice reduction cost estimates, decoding attacks, hash attacks, multi-target effects, and security margins. Learners compare claimed NIST levels without treating key length as the only measure.