Post-quantum cybersecurity and trust-mesh L1
Naoris Protocol NAORIS
Naoris Protocol claims to be a post-quantum native Layer 1 blockchain using NIST ML-DSA (FIPS 204 / Dilithium-5) for all transactions from genesis, with mainnet launched April 1, 2026. However, the primary publicly accessible value-bearing asset is the NAORIS ERC-20 token on Ethereum (~$54M circulating market cap, ~599M tokens, ~2,409 holders), which relies entirely on ECDSA signatures and inherits all of Ethereum's quantum vulnerabilities. The claimed native L1 has no public blockchain explorer, no open-source node software, no chain ID, and no independently verifiable mainnet transactions. Mainnet access is invite-only with permissioned validators. Testnet evidence (106M+ claimed PQ transactions) exists but cannot be independently verified. The bridge mechanism between the ERC-20 token and the native L1 is undocumented and its quantum security is unknown. The project has published some technical documentation and threat awareness content, and has engaged auditors (Hashlock 2025, CertiK), but audit scope appears limited to classical ERC-20 contracts. Overall, the project is in an early mitigation/development stage with testnet-level PQ evidence for the native L1, while production value remains fully exposed to quantum attack on Ethereum. QRI Score: 20/100 (Stage 2 — Mitigation/Development).
Partial ProtectionRoadmap OnlyToken Inheritance Risk
Category breakdown
QRI Factors
Algorithm & Implementation Assurance
5.5 / 20
Migration Mechanism, Governance & Ecosystem Coordination
4 / 15
Migration Status & Value-at-Risk
1.5 / 25
Production Cryptographic Protection
7.66 / 35
Security Assessment & Evidence Preparedness
1.25 / 5
Critical Quantum Blockers
- ERC-20 NAORIS token on Ethereum: all transfers, approvals, and admin operations rely on ECDSA signatures — a quantum-critical vulnerability. The ~$54M circulating supply (599M tokens, ~2,409 holders) is fully exposed to Ethereum's classical cryptography.
- Native L1 PQ claims cannot be independently verified: no public blockchain explorer, no open-source node software, no reproducible mainnet transactions, no chain ID. This is a quantum-critical uncertainty.
- Bridge mechanism between ERC-20 and native L1 is undocumented and unverified. A two-way bridge from a PQ-claimed L1 back to quantum-vulnerable Ethereum creates a quantum-critical vulnerability if unrestricted.
Key Risks
- 100% of publicly verifiable NAORIS token value (~$54M circulating) resides on Ethereum as an ERC-20 token secured by ECDSA — fully quantum-vulnerable.
- ERC-20 token contract is upgradeable (UUPS proxy) with admin-controlled keys on Ethereum; admin key compromise via quantum attack could affect the entire token supply.
- The native L1 PQ claims rely entirely on project self-attestation with no independent verifiability path for external observers.
- The 'Bridge tokens' feature on the official website implies a two-way flow between Ethereum and the native L1; if unrestricted, this creates a pathway for quantum-vulnerable value to undermine any PQ protection on the native chain.
- dPoSec consensus uses BFT elements; the exact cryptographic signature scheme for validator voting is undocumented — Dilithium is known to be challenging for BFT aggregation/threshold use cases.
- No evidence of quantum-safe P2P networking, node identity, or peer authentication.
- No evidence of hardware wallet, HSM, or institutional custody support for ML-DSA signatures.
- The 'irreversible security transition' feature implies classical keys may be initially supported, creating a migration window vulnerability.
Assurance Notes
- Hashlock 2025 audit covers ERC-20 token/governance contracts only; no audit of claimed PQ L1 node software, consensus, or Dilithium-5 implementation.
- CertiK Skynet score of 63.12 appears to cover ERC-20 contracts; scope does not extend to the claimed post-quantum L1.
- No public L1 blockchain explorer, chain ID, genesis block, or verifiable mainnet transactions exist to independently confirm Dilithium-5 or any PQC usage on the claimed L1.
- No L1 node source code is published on GitHub; the Naoris-Protocol GitHub organization contains only the ERC-20 token contracts and legacy Hyperledger forks.
- Whitepapers listed as 'Coming Soon' on the official site; only the MiCA compliance whitepaper (regulatory filing) provides technical descriptions, and it explicitly states the token standard is ERC-20.
- Mainnet is reported to be in an 'invite-only phase for validator operators,' limiting public verifiability of any PQ claims.
- The '105M+ PQ transactions' statistic is attributed to testnet but has no public explorer or reproducible artifact.
Non-Scoring Caveats
- Mainnet is invite-only with permissioned validators; decentralization and public verifiability are limited. This is an operational/product caveat.
- CertiK Code Security score of 63.12 is relatively low and may indicate implementation quality concerns, but this is an assurance-only caveat as it does not directly create a quantum attack path.
- Whitepapers listed as 'Coming Soon' on official site; no detailed protocol specifications publicly available.
- Testnet statistics (106M+ PQ transactions, 3.3M+ wallets) are self-reported by the project and not independently verified.
- No evidence of hardware wallet, HSM, or custody workflow support for the claimed PQ signing path.
- Future SDK and documentation releases are roadmap items; not relevant to current production readiness.
Evidence record
Claims and Caveats
Security Assessment & Evidence Preparedness
Public cryptographic inventory and quantum threat model
Claim: Project knowledge base discusses quantum threats and post-quantum cryptography concepts including Dilithium and KEM, but does not provide a formal, structured cryptographic inventory of all critical public-key mechanisms in the production system or a public quantum threat model covering attack assumptions and affected assets.
Coverage basis: PQ/hybrid usage claimed but not formally inventoried
Implementation score: 0.25 · Evidence confidence: Low
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: Knowledge base articles discuss PQ concepts at a high level but lack structured cryptographic inventory, key dependency mapping, or formal threat model documentation.
Project claims PQ-native design for the L1, which per Section 7.1 would make formal ECC inventory partially moot for the native asset. However, the ERC-20 token (classical) is the primary production asset and has no formal quantum threat assessment.
Security Assessment & Evidence Preparedness
Public evidence record supporting assessment
Claim: Limited public evidence: ERC-20 token code on GitHub, Etherscan token contract, testnet statistics on official website, knowledge base articles, and secondary media reports. No on-chain mainnet evidence, no cryptographic specifications, no independent audits of PQ implementation.
Coverage basis: Evidence exists for ERC-20 component only; L1 evidence is self-reported
Implementation score: 0.25 · Evidence confidence: Low
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: Hashlock audit (2025) covers token contracts only. CertiK Skynet insight exists but scope unclear. No audit covers PQ L1 implementation.
Evidence for native L1 is entirely self-reported; no independent verification path exists.
Production Cryptographic Protection
Spend authorization / transaction signatures
Claim: Project claims all native L1 transactions use NIST ML-DSA (FIPS 204 / Dilithium-5) signatures. ERC-20 token transactions on Ethereum use standard ECDSA. Testnet reportedly processed 106M+ PQ transactions.
Coverage basis: ERC-20: classical ECDSA. Native L1: testnet evidence only, mainnet unverifiable.
Implementation score: 0.25 · Evidence confidence: Low
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: ERC-20 NAORIS token spend authorization is entirely ECDSA-based on Ethereum; ~$54M circulating value is quantum-vulnerable. Native L1 PQ spend authorization cannot be independently verified on mainnet.
Assurance: No public mainnet transaction evidence, no block explorer, no open-source L1 node software. Testnet statistics are self-reported.
The Decrypt article quotes CGO stating ML-DSA (FIPS 204) is used with an 'irreversible security transition' mechanism. This is a credible technical claim but unverifiable in production.
Production Cryptographic Protection
Account, address, public-key exposure, and key-derivation design
Claim: Native L1 claims PQ-native account design from genesis with ML-DSA keys. ERC-20 token uses Ethereum's EOA model with exposed public keys upon transaction.
Coverage basis: ERC-20: classical exposed-key model. Native L1: claimed PQ-native, unverifiable.
Implementation score: 0.25 · Evidence confidence: Very Low
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: No address format specification, key derivation documentation, or account model details are publicly available for the native L1.
For the ERC-20 token, Ethereum EOAs that have sent transactions have exposed public keys — a long-exposure quantum vulnerability.
Production Cryptographic Protection
Consensus-critical authentication (validator signatures, VRFs, threshold signatures, block certificates)
Claim: Project claims dPoSec consensus uses post-quantum signatures for validator nodes. dPoSec combines PoS and BFT elements with an Oracle for Chain Health.
Coverage basis: Testnet evidence claimed for PQ consensus; mainnet unverifiable. ERC-20 inherits Ethereum consensus.
Implementation score: 0.25 · Evidence confidence: Very Low
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: No documentation of the exact cryptographic signature scheme used for BFT voting. Dilithium is known to be challenging for BFT aggregation/threshold use cases due to large signature sizes and lack of native aggregation. Mainnet validators are invite-only, preventing independent verification.
The dPoSec documentation describes BFT integration but does not specify how validator votes are cryptographically signed or aggregated. This is a gap for quantum attack surface analysis.
Production Cryptographic Protection
State-integrity and data-availability mechanisms
Claim: Project claims validation results are recorded as immutable events on the Post-Quantum Sub-Zero Blockchain Layer. No KZG/pairing dependencies identified.
Coverage basis: ERC-20 inherits Ethereum state integrity. Native L1 state integrity claims are unverifiable.
Implementation score: 0.25 · Evidence confidence: Very Low
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: No public specification of state commitment scheme, Merkle tree construction, or data availability mechanism for the native L1.
No evidence of pairing-based commitments (KZG) that would create additional quantum vulnerability. However, the absence of documentation means this cannot be confirmed.
Production Cryptographic Protection
Privacy and proof layers
Claim: No privacy layer or ZK proof system identified for the Naoris Protocol ecosystem.
Coverage basis: N/A
Implementation score: 0 · Evidence confidence: Not assessed
Issue classification: none · Score treatment: not applicable
Production Cryptographic Protection
P2P transport, node identity, and peer authentication
Claim: No evidence of PQ-secured P2P networking, node identity, or peer authentication for either the ERC-20 (inherits Ethereum) or the native L1.
Coverage basis: No PQ P2P evidence for native L1
Implementation score: 0 · Evidence confidence: None
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: No documentation of P2P layer cryptography for the native L1. The forked go-ethereum repository in the GitHub organization is unmodified from standard Ethereum, offering no PQ P2P enhancements.
P2P is generally a lower-risk layer for quantum attacks compared to spend authorization, but remains an unaddressed surface.
Production Cryptographic Protection
Critical wallet, custody, HSM, and hardware-wallet workflows
Claim: No evidence of PQ wallet, custody, HSM, or hardware wallet support for ML-DSA signatures in the Naoris ecosystem.
Coverage basis: No PQ wallet/custody support evidenced
Implementation score: 0 · Evidence confidence: None
Issue classification: assurance-only caveat · Score treatment: score-reducing
Assurance: No evidence of any wallet supporting ML-DSA for Naoris Protocol. The testnet used a browser extension wallet; PQ capabilities of production wallets unknown.
Even if the native L1 supports PQ signatures at protocol level, the absence of wallet support means users cannot practically use PQ signing paths.
Migration Status & Value-at-Risk
Percentage of economically relevant value-at-risk protected
Claim: The ERC-20 NAORIS token (~$54M circulating market cap, ~599M tokens) is 100% on Ethereum and entirely quantum-vulnerable. Native L1 value is unknown/unverifiable. Project claims native L1 is PQ-native with no classical namespace, but ERC-20 is the publicly verifiable value.
Coverage basis: ERC-20 value 100% quantum-vulnerable; native L1 value unmeasurable
Implementation score: 0.05 · Evidence confidence: Medium
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: ~$54M circulating ERC-20 token value is 100% exposed to Ethereum's ECDSA vulnerability. Native L1 value coverage cannot be measured.
Assurance: Circulating supply and market cap data from CoinCarp and Etherscan as of evaluation date. Native L1 token balances are not publicly verifiable.
Coverage <25% (experimental/negligible protection) when considering total publicly verifiable value. If the native L1 has meaningful value, it cannot be measured.
Migration Status & Value-at-Risk
Critical wallets migrated, protected, or inherently PQ-native
Claim: ERC-20 token has admin keys (upgradeable UUPS proxy, pausable, minting controls) all on Ethereum secured by ECDSA. No evidence any critical wallets have migrated to native L1 PQ protection.
Coverage basis: No critical wallet migration evidenced
Implementation score: 0 · Evidence confidence: Medium
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: ERC-20 token admin keys (upgrade, pause, mint) are ECDSA-secured on Ethereum. Quantum compromise of admin keys could affect the entire token supply.
Assurance: ERC-20 contract is an ERC1967Proxy with admin-controlled upgrade capability. No timelock or multisig details confirmed.
Treasury, foundation, and exchange wallets holding NAORIS are on Ethereum and quantum-vulnerable.
Migration Status & Value-at-Risk
Legacy vulnerable pools identified, measurable, deprecated, or proven not to exist
Claim: The ERC-20 token supply (~599M circulating, 4B max) is entirely on Ethereum and represents a legacy vulnerable pool. No deprecation, freeze, or burn plan for the ERC-20 token is publicly documented.
Coverage basis: ERC-20 supply identified as legacy vulnerable pool but not addressed
Implementation score: 0.25 · Evidence confidence: Medium
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Assurance: The ERC-20 supply and holders are visible on Etherscan (2,409 holders). No migration or deprecation mechanism for these tokens is documented.
The project website has a 'Bridge tokens' button but no public documentation of the bridge mechanism, its security model, or whether it can handle the full ERC-20 supply.
Migration Mechanism, Governance & Ecosystem Coordination
Public migration or protection roadmap with sequencing, activation criteria, and dependencies
Claim: Project blog describes phased mainnet rollout starting with invite-only validators, followed by community access, then developers. An 'irreversible security transition' is described where accounts adopting PQ keys cannot revert to classical signatures.
Coverage basis: Roadmap exists at high level; sequencing details for ERC-20 migration absent
Implementation score: 0.25 · Evidence confidence: Low
Issue classification: operational/product caveat · Score treatment: score-reducing
Assurance: Roadmap is described at high level in blog posts. No detailed technical migration specification, activation criteria, or timeline for ERC-20 to native L1 migration.
The 'irreversible security transition' is described for native L1 accounts but does not address how ERC-20 holders migrate.
Migration Mechanism, Governance & Ecosystem Coordination
Migration accessibility and defaults: PQ/hybrid account creation, wallet tooling, transaction paths, custody paths, user-facing warnings, education, and migration prompts
Claim: Native L1 claims PQ-native account creation from genesis. ERC-20 token holders must bridge to access native L1. No public wallet tooling, custody paths, or migration prompts evidenced for the bridge process.
Coverage basis: No accessible migration tooling for ERC-20 holders
Implementation score: 0.25 · Evidence confidence: Low
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: Website has 'Bridge tokens' button but no public documentation of the bridge, its security model, supported wallets, or migration process.
No public wallet software, browser extension, or CLI tool for native L1 interaction is available. SDKs are described as future releases.
Migration Mechanism, Governance & Ecosystem Coordination
Migration enforcement and coordination: enforcement mechanisms, exchange/custody/bridge/wallet coordination, unsafe-path blocking
Claim: Project claims 'irreversible security transition' on native L1: once an account adopts PQ keys, classical signature attempts are blocked. No evidence of exchange, custody, or bridge coordination. ERC-20 bridge path remains unrestricted.
Coverage basis: Enforcement claimed for native L1 only; no ERC-20 coordination evidenced
Implementation score: 0.5 · Evidence confidence: Low
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: Two-way bridge between ERC-20 (quantum-vulnerable Ethereum) and native L1 (claimed PQ) is unrestricted and undocumented, creating a quantum-critical vulnerability pathway.
Assurance: The 'irreversible security transition' is described in media interviews but its implementation and enforcement on mainnet cannot be verified. No bridge security documentation exists.
If the bridge permits unrestricted two-way flow, value can always flow back to quantum-vulnerable Ethereum, undermining any PQ protection on the native chain.
Migration Mechanism, Governance & Ecosystem Coordination
Emergency disclosure, incident-response, or governance process for quantum-related vulnerabilities
Claim: No public evidence of a formal quantum-specific incident response process, vulnerability disclosure program, or emergency governance procedure for quantum-related threats.
Coverage basis: No quantum-specific IR/disclosure process evidenced
Implementation score: 0 · Evidence confidence: None
Issue classification: assurance-only caveat · Score treatment: note-only
Assurance: Per QRI v3.1 Note-Only Caveat Rule, absence of a formal quantum-specific IR playbook is a note-only caveat unless it leaves a current quantum-vulnerable path unresolved.
This is a note-only caveat per Section 7.4. However, given the ERC-20 token's quantum exposure, a quantum-specific IR process would be valuable.
Algorithm & Implementation Assurance
Uses NIST-standardized, standards-track, or broadly reviewed PQC/hybrid-PQC algorithms
Claim: Project claims use of NIST ML-DSA (FIPS 204, formerly CRYSTALS-Dilithium) at Security Level 5 for transaction signatures. The CGO has explicitly distinguished ML-DSA from pre-standardization Dilithium in public statements.
Coverage basis: Algorithm selection is NIST-standardized; implementation unverifiable on mainnet
Implementation score: 0.5 · Evidence confidence: Medium
Issue classification: none · Score treatment: score-reducing
Assurance: ML-DSA (FIPS 204) is a NIST-standardized algorithm, which is positive. However, the implementation cannot be independently verified. The CGO's public statements show awareness of the ML-DSA vs Dilithium distinction, which is a positive signal.
Score of 0.50 reflects that the algorithm choice is verified (NIST-standardized) and testnet evidence exists, but mainnet implementation is unverifiable.
Algorithm & Implementation Assurance
Independent cryptographic and implementation audit for quantum-critical scope
Claim: Hashlock audit (2025) covers ERC-20 token contracts only. CertiK Skynet shows Code Security score of 63.12 with unclear scope. No independent audit of the native L1 PQ cryptography, consensus, or node implementation exists.
Coverage basis: Audits cover classical ERC-20 only; PQ L1 is unaudited
Implementation score: 0.25 · Evidence confidence: Medium
Issue classification: assurance-only caveat · Score treatment: score-reducing
Assurance: Hashlock audit is stale (2025) relative to April 2026 mainnet and scope-mismatched (ERC-20 only, not PQ L1). CertiK scope unclear. No PQ-specific audit exists. Per QRI v3.1, audit gaps are confidence-reducing but do not independently cap the QRI Score unless they make a quantum-critical property unverifiable.
The CertiK Code Security score of 63.12 is relatively low. Without knowing the audit scope, this may indicate implementation quality concerns.
Algorithm & Implementation Assurance
Open-source, reproducible implementation
Claim: Only the ERC-20 token and governance Solidity contracts are open-source on GitHub. The native L1 node software, consensus implementation, and PQ cryptography integration are not publicly available.
Coverage basis: Partial open-source: ERC-20 contracts only
Implementation score: 0.25 · Evidence confidence: High
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: The Naoris-Protocol GitHub organization has 25 repos, but most are forks of Hyperledger/Ethereum projects. No native L1 node implementation is public. The go-ethereum fork appears unmodified from upstream.
Without open-source L1 node software, the PQ claims are inherently unverifiable by external parties.
Algorithm & Implementation Assurance
Parameter agility and future upgrade path
Claim: No public documentation of parameter agility, algorithm upgrade path, or cryptographic agility mechanisms for the native L1. The ERC-20 token is upgradeable via UUPS proxy.
Coverage basis: No documented agility for native L1
Implementation score: 0 · Evidence confidence: None
Issue classification: assurance-only caveat · Score treatment: note-only
Assurance: Per QRI v3.1, future PQ-to-PQ upgrade uncertainty is a note-only caveat for the current production scope. However, the absence of any documented upgrade path is notable.
This is treated as a note-only caveat per Section 7.4 since it concerns future upgrades from one claimed-PQ system to another. However, the absence of documentation for the current system's parameter management is concerning.
Algorithm & Implementation Assurance
Stateful-signature safety, side-channel, fault-injection, and custody implementation risks
Claim: No public analysis of side-channel resistance, fault-injection countermeasures, state management for ML-DSA, or hardware wallet/HSM implementation considerations.
Coverage basis: No side-channel or implementation security analysis evidenced
Implementation score: 0 · Evidence confidence: None
Issue classification: assurance-only caveat · Score treatment: note-only
Assurance: ML-DSA is not a stateful signature scheme (unlike XMSS/LMS), so state-management risks are lower. However, side-channel and fault-injection considerations for Dilithium/ML-DSA implementations are real and unaddressed.
Treated as note-only per Section 7.4. Not score-reducing because the absence of a side-channel analysis does not itself create a quantum-enabled attack path; however, it represents a real-world implementation risk.
Algorithm & Implementation Assurance
Performance and resource-impact analysis
Claim: Project website claims 'up to 70,000 TPS' on testnet with Dilithium-5 signatures. No formal performance benchmark, gas/fee analysis, or resource-impact study is publicly available.
Coverage basis: Self-reported TPS figure; no formal benchmark
Implementation score: 0.25 · Evidence confidence: Very Low
Issue classification: assurance-only caveat · Score treatment: note-only
Assurance: The 70,000 TPS claim is self-reported with no independent verification. ML-DSA signatures are significantly larger (~2.5-4.5 KB) than ECDSA (~64-72 bytes), which has real implications for block size, propagation, and storage. No analysis of these impacts is available.
Treated as note-only per Section 7.4 (missing formal benchmark). However, ML-DSA's large signature size is a well-known challenge for blockchain deployment that deserves attention.
Report metadata