Securing digital assets for the post-quantum era

The Quantum Threat to Blockchains - 2026 Report Now available ⬇️
17
29
99
24,018
🚨 The latest from @Microsoft 🚨 "The quantum-safe timeline has changed" Here's everything you need to know about their latest announcement 🧵⬇️
11
20
65
4,712
"Building crypto‑agility into systems delivers long-term resilience so new cryptography standards can be adopted over time without redesigning systems" - Microsoft Crypto-agility, especially in the blockchain context where digital signatures are the only proof of ownership, will become critical in the post-quantum era.
1
10
356
Has your blockchain/infrastructure provider/custodian done this yet? If not, talk to us @projecteleven. DMs open or projecteleven.com/contact
1
11
349
Project Eleven retweeted
Hash-based signatures like LMS and XMSS rely on one-time keys, where signing two messages under one key lets an attacker forge signatures. Interesting new paper where key reuse becomes less severe. The signer keeps re-rolling the random salt `r` already in the signature (Hash(r|m)) until the checksum comes out low, which forces the message digits high and leaves a key-reuser *almost* no message they can actually forge. The verifier is unchanged and never knows the signer did this "grinding". My take: a nice fallback to have, but not a fix for reuse at alll. It assumes the key is reused exactly once, and even then a small fraction of reuses allows for forgery. The hash grinding also has to stay inside the signer, or you end up handing an attacker a chosen-message attack. Feels like a nice fall back worth switching on for firmware and HSM signing, where reuse is already meant to be unlikely. It does but more work on the signer side (1.4 million hashes more on average) so maybe not the best for constrained devices. Sadly this means we likely cannot use it for better state reuse mitigation on hardware wallets.
3
2
25
1,593
Project Eleven retweeted
Shamir Secret Sharing splits a secret into n shares where any k shares can rebuild the secret (formally, and hopefully obviously, k ≤ n). Importantly, any k−1 shares should tell you nothing about the secret. Why do we care? The obvious use is key management. Split a private key into shares held by different people or machines and no single one of them is worth stealing: you can lose a few shares and still recover the key, and an attacker has to gather k of them at once to learn anything. On the surface this sounds like it should be some complex protocol with all sorts of deep cryptography (FHE/MPC/ZK), but in reality it's very simple and requires only some basic geometry and an understanding of polynomials. But how does it work? I'm a visual learner, so if you prefer visuals just watch the attached video (this post was mostly an excuse to play with manim, a library for mathematical animations). Otherwise: Start with a straight line. You need a minimum of 2 points to fix exactly one line. A single point does not: infinitely many lines pass through it. Similarly, you need three points to fix a parabola, four to fix a cubic, and so on. A polynomial of degree k−1 is fixed by exactly k points. Give it k and only one such polynomial fits; give it k−1 (or less) and infinitely many do. So here are the steps to share a secret. Take a polynomial of degree k−1 and make the secret its value at x equals zero (or f(0)). Fill the other k−1 coefficients with random numbers. Then hand out points on it: person i gets f(i), for i from 1 to n. Nobody gets f(0) itself. To get the secret back, any k people pool their points/shares. k points fix the polynomial, so they rebuild it and read off its value at zero. That value is the secret. What about k−1 people? Their points do not fix the polynomial. Plenty of curves pass through them, and they give different values at zero. So k−1 shares leave the secret open. But does that actually keep it hidden? Over the real numbers, not quite. The polynomials through k−1 points do cover every possible secret, but not evenly, so your shares still make some secrets likelier than others, i.e, a little information leaks. To fix this we stop using the real numbers and work in a finite field: the integers modulo a prime p, where arithmetic wraps around at p and the random coefficients are drawn uniformly from the field. Now there is no leak. With k−1 shares, every value in the field is an equally likely secret, so the best anyone can do is guess. The shares give away nothing. This is perfect secrecy: the secret cannot be recovered from those shares by any means, with any amount of computing power, ever (even a quantum computer does not change that!). In practice that is exactly what you want for a secret that has to survive for years: a root key, a wallet seed, a recovery key. Split it this way and it does not get weaker as hardware improves or as quantum machines arrive, because its safety never rested on a computation being hard. The shares only have to stay apart!
7
5
52
4,217
Project Eleven X Account very good much funny many education You should follow @projecteleven
2
1
21
1,370
TUNE IN NOW!
SpaceX is so back (until it isn't). Live NOW! 🛰️ $SPCX is a datacenter company (Reflection AI deal) 🛰️ $NBIS & $CRWV in Nasdaq 100 🛰️ @WhiteHouse Quantum Dominance guest: @apruden08 @projecteleven nitter.app/i/broadcasts/1qKDzzdZM…
2
2
15
1,712
The White House is tweeting pics like this. Are you ready for the post-quantum world?
17
18
124
4,718
Project Eleven retweeted
President Trump just signed two executive orders today, accelerating both the race to build a quantum computer and the migration to defend against one. First, the administration is directing the U.S. Department of Energy to develop a Scientifically Relevant Quantum Computer (SRQC) in the next five years. Second, the order accelerates federal agencies' adoption of post-quantum cryptography by four years, deprecating existing classical cryptography after 2031. From the perspective of the American executive branch, offense (quantum computing) and defense (post-quantum cryptography) are now on the same five-year horizon. Migration to post-quantum cryptography isn't tomorrow's problem anymore. It's today's.
What are the most important points from the new Trump Executive Orders on Quantum? ⬇️ 1. The first executive order launches a national effort to produce a quantum computer in the next 5 years, investing in American quantum leadership to stay ahead of the pack. 2. The second executive order directs federal agencies to transition to post-quantum cryptography for their computer systems by 2031. 3. The Department of Energy is tasked with creating a Scientifically Relevant Quantum Computer, making quantum a top 2 science and technology priority. 4. The US Government directly understands the risk to existing systems when a powerful quantum computer comes online. The defense provided by post-quantum cryptography is as important as the offense. 5. Post-quantum cryptography is mentioned countless times. NIST and Department of Commerce are planning to lead the charge to ensure systems (and digital assets) remain protected in a post-quantum world.
6
14
74
12,687
WOW! President Trump's new executive order gives incredibly clear directives and timelines on the migration to post-quantum cryptography. 🧵
4
13
76
8,240
Get ready for lots of reports
1
1
8
593
Vulnerability Disclosure Policies 👀
6
510