Post-quantum trust infrastructure
Tools, references, and a post-quantum public key infrastructure for the transition to post-quantum cryptography.
If anything on this site contradicts current standards or your own measurements, please tell us — that's a bug, not a feature.
Status board
| system | what it is | status |
|---|---|---|
| spork | post-quantum certificate authority, written in Rust | ALPHA |
| pki | ML-DSA-signed CA hierarchy | REBUILD |
| acme | RFC 8555 issuance, gated on the PKI refactor | PLANNED |
| forge | hands-on post-quantum tools | DEV |
| vault | post-quantum reference library | DEV |
| core | security principles and practices | PLANNED |
Standards we're tracking
The post-quantum baseline is NIST's three finalized standards: FIPS 203 (ML-KEM, key encapsulation), FIPS 204 (ML-DSA, signatures), and FIPS 205 (SLH-DSA, stateless hash signatures), all published August 13, 2024. NSA's CNSA 2.0 timeline phases these in across categories; exclusive use is required across all categories by 2033.