Kaellabs
Research Lab

Future—
Proof
Security.

Quantum computers will break the cryptography that secures the modern internet. Kaellabs builds the standards, software, and instrumentation that come next.

Get startedExplore the Risq Index
Voxel lattice
Scroll
HelionNorthgateArdent CapitalPolaris FoundationMeridian LabsQuanta TrustVellumOrbit ReserveHelionNorthgateArdent CapitalPolaris FoundationMeridian LabsQuanta TrustVellumOrbit Reserve
Premise

The cryptography protecting trillions of dollars in digital assets was designed for a world without quantum machines. That world is ending.

We work with custodians, exchanges, and sovereign issuers to migrate to NIST-standardized post-quantum schemes — without breaking the contracts, wallets, and habits the open economy already runs on.

What we build

01

Halcyon

Lattice-based signing service with hardware attestation. Drop-in for existing HSM workflows.

02

Risq Index

Continuous exposure map of wallets, contracts and chains vulnerable to a cryptographically relevant quantum adversary.

03

Sentry SDK

Hybrid PQ + classical libraries for Rust, Go, and TypeScript with audited bindings.

$1.9T
Estimated assets dependent on classical ECDSA
25%
Of Bitcoin UTXOs exposing public keys today
2030
NIST migration deadline for federal systems
14
PQ standards across signature & KEM families
Timeline

A decade-long transition, already underway.

  1. 2024
    NIST finalizes ML-KEM, ML-DSA, and SLH-DSA as the first federal post-quantum standards.
  2. 2025
    Major browsers ship hybrid X25519 + ML-KEM key exchange by default.
  3. 2026
    Custodians begin issuing PQ-signed attestations alongside ECDSA for new accounts.
  4. 2028
    Federal systems required to publish migration plans. Hybrid signing reaches majority adoption among institutional issuers.
  5. 2030
    U.S. federal mandate for full PQ migration. Legacy ECDSA-only systems treated as deprecated.
  6. 2035
    Estimated window in which a cryptographically relevant quantum computer becomes plausible.
Principles

How we work, in five sentences.

Research over hype.

We publish what we learn. The hardest problems in cryptography are solved in the open, by people willing to be wrong in public.

Hybrid by default.

Through the migration window, every signature carries both a classical and a post-quantum guarantee. Verification succeeds while either remains unbroken.

Boring infrastructure.

Cryptography is the layer underneath. Our job is to make it invisible to the operators who depend on it and unsurprising to the auditors who review it.

Small surface area.

Fewer primitives, audited deeply. Every line of cryptographic code we ship is reviewed by at least two researchers outside the original author's team.

Patient partners only.

We work with a small set of custodians, sovereigns, and foundations who are early enough to do this carefully and patient enough to do it well.

Open standards.

We contribute to IETF, NIST, and the wider research community. The standards that secure the next internet should not belong to any one vendor.

Field note

Eighteen months inside an institutional migration.

A top-ten custodian asked us to add post-quantum signing to a stack that handled roughly forty thousand transactions per day, without touching the policy engine or the audit trail their regulators already approved.

We shipped hybrid ML-DSA attestations behind their existing HSM API in eleven weeks. Latency rose by single-digit milliseconds. The operators noticed nothing.

Read the engagement notes
11 wks
From kickoff to first PQ signature in production
+6 ms
Median latency added to the signing path
0
Changes required to the existing custody policy
100%
Of historical signatures re-attestable on demand
Questions

The ones we hear most.

When does a quantum computer actually break ECDSA?+

Nobody knows exactly. Credible expert surveys place a 20–30% probability of a cryptographically relevant machine by 2035. The migration takes longer than that window, which is why work begins now.

Do I need to move every key today?+

No. The priority is anything signing new commitments, anything with reused public keys, and anything that must remain valid past the migration window. The Risq Index is a starting point for the second category.

What happens to Bitcoin in a post-quantum world?+

Bitcoin has well-understood paths to a post-quantum signature scheme via soft fork. The harder question is the social coordination required to move legacy outputs before they can be opportunistically swept.

Is hybrid signing standardized?+

Yes. IETF drafts and CNSA 2.0 guidance both specify hybrid constructions. We ship audited implementations of the leading drafts.

Can we run this air-gapped?+

Yes. The Sentry SDK runs in HSM and air-gapped signer environments. We provide reference integrations for the major platforms.

From the journal

All writing
Research

The harvest-now, decrypt-later problem

Jun 2026
Engineering

Notes on running ML-DSA in production

May 2026
Essay

A quiet migration

Apr 2026

Begin the migration.

A 30-minute briefing with our research team to map your exposure and the path to a quantum-resistant posture.

Request a briefing