Quantum computers will break ECDSA and secp256k1 — the algorithms protecting every crypto wallet today. PQSafe uses ML-DSA-65 and ML-KEM-768 to protect your assets before the threat arrives.
Three simple steps to quantum-safe crypto management.
2 minutes
Clone the repo, run npm install && npm run build,
then load the dist/ folder
as an unpacked Chrome extension. No Chrome Web Store account needed.
30 seconds
Click "Create New Wallet" — PQSafe generates an ML-DSA-65 keypair using CRYSTALS-Dilithium. Your 3309-byte public key and address are derived entirely client-side. Nothing ever leaves your browser.
Instant
Type any message, click Sign — you get a 3293-byte ML-DSA signature that no quantum computer can forge. Paste any public key + signature to verify authenticity in real time.
NIST issued a mandate in 2024 to migrate away from RSA and ECDSA. Google's Willow chip demonstrated quantum supremacy. Shor's algorithm will crack secp256k1 — the key curve used by Bitcoin, Ethereum, and every major wallet — once fault-tolerant quantum hardware arrives.
CRYSTALS-Dilithium (ML-DSA-65) is NIST FIPS 204 standardized. Based on hard lattice problems — unbreakable by Shor's algorithm. 3309-byte public keys, 3293-byte signatures. Security Level 3: equivalent to AES-192. Built for real-world production use.
CRYSTALS-Kyber (ML-KEM-768) is NIST FIPS 203 standardized — the post-quantum Key Encapsulation Mechanism. Enables quantum-safe encrypted key exchange. AES-192 equivalent security. Already deployed by Apple, Google, and Cloudflare.
# Powered by @noble/post-quantum — audited, zero-dependency, pure TypeScript
When quantum computers arrive, existing wallets will be vulnerable. PQSafe is ready now.
| Feature |
PQ
PQSafe
|
MetaMask | Classical Wallets |
|---|---|---|---|
| Signature Algorithm | ML-DSA-65 (Dilithium) | ECDSA secp256k1 | ECDSA / RSA |
| Key Exchange | ML-KEM-768 (Kyber) | ECDH | ECDH / DH |
| Quantum Resistant | ✓ Yes | ✗ No | ✗ No |
| NIST Standard | FIPS 203 & 204 | None (legacy) | None (legacy) |
| Address Format | pq1[sha256 of ML-DSA pubkey] | 0x[keccak160] | varies |
| Open Source | ✓ MIT License | Partial | Varies |
| Manifest Version | Chrome MV3 | MV3 | Varies |
Harvest Now, Decrypt Later: Adversaries are already recording encrypted traffic today to decrypt once quantum computers exist. "Store now, decrypt later" attacks mean the threat is already active — migration cannot wait.
Clean, minimal UI. Everything you need — nothing you don't.
Post-quantum cryptographic wallet
powered by ML-DSA-65
Keys never leave your browser
Every line of cryptographic code is open for inspection. No proprietary black boxes. No telemetry. No cloud dependencies. Your keys, your code, your security.
The world's first post-quantum crypto wallet
PQSafe 采用 NIST FIPS 203/204 标准的 ML-DSA-65 数字签名和 ML-KEM-768 密钥封装算法,在量子计算威胁到来之前,为您的数字资产提供真正的后量子安全保护。
当其他钱包还在使用即将被量子计算机破解的 ECDSA 时,PQSafe 已经领先一步。基于 CRYSTALS-Dilithium 和 CRYSTALS-Kyber 算法, 这两个算法已经过全球密码学界数年的严格审查,并于 2024 年正式由 NIST 标准化为 FIPS 203 和 FIPS 204。
Join the builders who refuse to wait for the quantum threat. Install PQSafe today — free, open source, and quantum-resistant from day one.