stablecoin
TrueUSD TUSD
TrueUSD (TUSD) is a fiat-collateralized stablecoin with ~$494M market cap deployed as a standard ERC-20/TRC-20/BEP-20 token across multiple host chains. TUSD has no custom cryptography and inherits all transaction security from its host chains (Ethereum, TRON, BNB Smart Chain, Avalanche), all of which rely exclusively on quantum-vulnerable ECDSA for spend authorization. The token's admin functions—including minting, burning, pausing, and contract upgrades—are controlled by classical ECDSA addresses (proxyOwner on Ethereum) with long-exposed public keys. No quantum risk assessment, cryptographic inventory, PQC implementation, migration roadmap, or mitigation design exists. The project scores 0/100 across all five QRI categories. Stage 0 (Unassessed / No Evidence) applies because the project has not published even a basic quantum risk assessment. The ~$494M in circulating value plus admin-controlled supply integrity remain entirely unprotected against quantum key-recovery attacks. The original issuer (Archblock) is in Chapter 11 bankruptcy, and current operator Techteryx has published no quantum-related plans.
Not AssessedECC-OnlyToken InheritanceMulti-ChainStablecoinNo-Quantum-Plan
Category breakdown
QRI Factors
Algorithm & Implementation Assurance
0 / 20
Migration Mechanism, Governance & Ecosystem Coordination
0 / 15
Migration Status & Value-at-Risk
0 / 25
Production Cryptographic Protection
0 / 35
Security Assessment & Evidence Preparedness
0 / 5
Critical Quantum Blockers
- Active production spend authorization remains entirely ECDSA-only across all host chains (Ethereum, TRON, BNB Smart Chain, Avalanche) with no PQC or hybrid-PQC path.
- Token admin keys (proxyOwner upgrade authority, mint/burn/pause functions) are controlled by classical ECDSA addresses with long-exposed public keys on-chain.
- No public cryptographic inventory or quantum risk assessment has been published by Techteryx, Archblock, TrueCoin, or any associated entity.
- No quantum migration roadmap, PQC implementation, prototype, testnet, or mitigation design exists for any TUSD contract or admin key.
- Multi-chain bridged TUSD deployments depend on third-party bridge signer sets that are also ECDSA-only.
Key Risks
- All ~$494M in circulating TUSD value is protected only by ECDSA spend authorization on quantum-vulnerable host chains. A CRQC could recover private keys from exposed public keys and steal funds.
- The token admin key (proxyOwner on Ethereum, equivalent admin keys on other chains) is a classical ECDSA address whose public key is permanently exposed on-chain. Compromise would enable unlimited minting of unbacked TUSD, global token freezing, supply destruction, and malicious contract upgrades.
- Multi-chain bridged TUSD deployments (Polygon, Fantom, Arbitrum, Cronos, Optimism, Aurora) rely on third-party bridge infrastructure with ECDSA-only signer sets.
- No migration path exists. TUSD cannot independently migrate its users to quantum-safe cryptography; it is entirely dependent on host-chain PQC adoption for base-layer protection.
- The bankruptcy of Archblock/TrueCoin and the complex ownership history create governance uncertainty that may delay or prevent coordinated quantum-migration action.
- TUSD's multi-chain architecture means quantum vulnerability exists on every deployed chain simultaneously.
- The absence of any public quantum risk assessment or cryptographic inventory means token holders, exchanges, and custodians cannot evaluate the project's quantum-attack surface without independent analysis.
Assurance Notes
- Original issuer Archblock (fka TrustToken) and subsidiaries TrueCoin LLC and TrustToken Inc. filed Chapter 11 bankruptcy on 2026-02-06. The TUSD business was sold to Techteryx Ltd. (BVI) in December 2020, and Techteryx assumed full operational control in July 2023.
- The Ethereum proxy contract (OwnedUpgradeabilityProxy at 0x0000000000085d4780b73119b644ae5ecd22b376) uses a proxyOwner ECDSA address for upgrade authority. The implementation contract handles mint/burn/pause functions.
- TUSD has both native deployments (Ethereum, TRON, BNB Smart Chain, Avalanche) and bridged/wrapped deployments (Polygon, Fantom, Arbitrum, Cronos, Optimism, Aurora) relying on third-party bridges with their own quantum-vulnerable signer sets.
- No independent cryptographic audit exists for the TUSD token contracts specifically addressing quantum security properties. The contracts are verified on Etherscan and the source code is publicly available.
- The TUSD whitepaper (February 2026) and all official documentation (tusd.io) contain no reference to cryptographic algorithms, post-quantum cryptography, quantum threats, or migration planning.
- S&P Global Ratings gave TrueUSD its lowest score due to concerns over reserve management and redemption ability. Binance removed TUSD as eligible collateral for VIP Loans effective March 2026. These are operational/credit concerns, not quantum-cryptographic ones.
Non-Scoring Caveats
- Archblock/TrueCoin/TrustToken Chapter 11 bankruptcy (filed February 2026) is an operational/financial concern that does not alter the quantum-vulnerability assessment but may affect future migration capability and governance coordination.
- TUSD cannot independently upgrade its cryptographic security; it depends entirely on host-chain (Ethereum, TRON, etc.) PQC adoption for base-layer protection. Token-level admin-key migration is possible independently but has not been planned.
- Multi-chain presence creates both vulnerability (inherits weaknesses from each host) and potential opportunity (can migrate to quantum-safe hosts as they mature).
- Stablecoin admin key vulnerability is an industry-wide issue identified by Google Quantum AI (March 2026) affecting ~$200B in stablecoins and tokenized assets.
Evidence record
Claims and Caveats
Security Assessment & Evidence Preparedness
Public cryptographic inventory and quantum threat model
Claim: No public cryptographic inventory or quantum threat model exists for TrueUSD.
Coverage basis: Absence of quantum-related documentation across all official channels
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Quantum blocker: No public cryptographic inventory or quantum risk assessment
Assurance: The TUSD whitepaper (February 2026), official website, and all public documentation contain zero references to cryptographic algorithms, quantum threats, or post-quantum planning.
Extensive web searches returned no relevant results. The project has made no public effort to inventory its cryptographic dependencies or assess quantum risk.
Security Assessment & Evidence Preparedness
Public evidence record supporting the assessment
Claim: No public evidence record exists to support a quantum readiness assessment because no assessment has been performed.
Coverage basis: Absence of quantum-related evidence artifacts
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: The absence of any quantum-specific evidence record is confirmed by exhaustive search of official channels.
Production Cryptographic Protection
Spend authorization / transaction signatures PQC or hybrid-PQC on mainnet
Claim: All TUSD spend authorization relies entirely on host-chain ECDSA (Ethereum, TRON, BNB Smart Chain, Avalanche). No PQC or hybrid-PQC signature support exists at the token or host-chain level.
Coverage basis: Host-chain ECDSA inheritance; verified contract code
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: Active production spend authorization remains entirely ECDSA-only across all host chains
Assurance: TUSD is a standard ERC-20/TRC-20/BEP-20 token with no custom cryptographic primitives. Verified contract code on Etherscan confirms standard ERC-20 proxy pattern with no PQC elements.
Per QRI Section 7.2 (Token Inheritance), TUSD inherently shares the base-layer QRI score of its host chains for spend authorization. All current host chains are ECC-only.
Production Cryptographic Protection
Account, address, public-key exposure, and key-derivation design
Claim: TUSD inherits the host-chain address model where public keys are permanently exposed on first transaction. Ethereum EOAs reveal public keys upon transaction broadcast, creating long-exposure quantum-vulnerable ownership paths.
Coverage basis: Host-chain address/public-key exposure model
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: Long-exposure quantum-vulnerable public keys for all transacted addresses with no mitigation
Assurance: The Ethereum address model permanently exposes the ECDSA public key on first spend. The TUSD proxyOwner and all admin addresses that have sent transactions have exposed public keys.
Google Quantum AI paper (March 2026) identified stablecoin admin keys on Ethereum as critical quantum attack vectors.
Production Cryptographic Protection
Consensus-critical authentication (validator signatures, VRFs, threshold signatures, block certificates)
Claim: TUSD is a token and has no consensus layer of its own.
Coverage basis: Token architecture; no native blockchain
Implementation score: 0 · Evidence confidence: High
Issue classification: none · Score treatment: not applicable
Production Cryptographic Protection
State-integrity and data-availability mechanisms
Claim: TUSD does not employ independent commitment schemes, nullifiers, accumulators, KZG/pairing-based commitments, or custom bridge verification logic at the token level.
Coverage basis: Token architecture; admin-key-controlled supply
Implementation score: 0 · Evidence confidence: High
Issue classification: none · Score treatment: not applicable
Production Cryptographic Protection
Privacy and proof layers
Claim: TUSD has no privacy features, shielded pools, ZK proof systems, or confidential transaction mechanisms.
Coverage basis: Standard transparent ERC-20 token
Implementation score: 0 · Evidence confidence: High
Issue classification: none · Score treatment: not applicable
Production Cryptographic Protection
P2P transport, node identity, and peer authentication
Claim: TUSD is a token and has no P2P network, node identity system, or peer authentication layer of its own.
Coverage basis: Token architecture; no native network layer
Implementation score: 0 · Evidence confidence: High
Issue classification: none · Score treatment: not applicable
Production Cryptographic Protection
Critical wallet, custody, HSM, signer, and hardware-wallet workflows
Claim: The TUSD admin key infrastructure (proxyOwner on Ethereum, equivalent admin keys on other chains) uses classical ECDSA with no PQC or hybrid support.
Coverage basis: Verified contract code; proxyOwner single-address pattern
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: Token admin keys controlled by classical ECDSA address with long-exposed public key
Assurance: The OwnedUpgradeabilityProxy contract on Ethereum uses a proxyOwner address for all upgrade authority. The implementation contract's mint/burn/pause functions are also controlled by admin addresses using classical ECDSA.
The deployer address (0x7bA7EF06A2621267f063eF2DB2d482D5B507D8b3) had a suspected key compromise in October 2023, illustrating classical key management risks.
Migration Status & Value-at-Risk
Percentage of economically relevant value-at-risk protected
Claim: 0% of the ~$494M TUSD circulating supply is protected from quantum key-recovery attacks. All value is held in ECDSA-secured addresses on quantum-vulnerable host chains.
Coverage basis: Market cap data; host-chain ECDSA dependency
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: Material long-exposure quantum-vulnerable value (~$494M) exists with no migration, freeze, deprecation, or protection path
Assurance: As of June 2026, CoinMarketCap reports ~494.5M TUSD circulating supply with ~$494M market cap. No portion of this value has any PQC or hybrid protection.
A quantum attacker compromising the admin key could mint unlimited new TUSD regardless of how much is in circulation.
Migration Status & Value-at-Risk
Critical wallets migrated, protected, or inherently PQ-native
Claim: None of TUSD's critical wallets have been migrated to PQC or hybrid protection. The admin/owner addresses and treasury wallets all remain ECDSA-only.
Coverage basis: Verified contract ownership; absence of migration evidence
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: Critical admin wallets remain entirely ECDSA-only with no migration path
Assurance: Proxy upgrades have occurred as recently as July 2024, confirming the proxyOwner has transacted and exposed its public key.
Migration Status & Value-at-Risk
Legacy vulnerable pools/accounts identified, measurable, deprecated, migrated, frozen, or proven not to exist by design
Claim: No identification, measurement, deprecation, or migration of quantum-vulnerable accounts or value pools has been performed.
Coverage basis: Absence of any such identification or measurement
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: TUSD is not PQ-native (launched in 2018 with classical ECDSA on Ethereum).
As a token on account-based chains, all EOAs that have sent TUSD transactions have exposed public keys.
Migration Mechanism, Governance & Ecosystem Coordination
Public migration or protection roadmap
Claim: No public quantum migration or protection roadmap exists for TrueUSD.
Coverage basis: Absence of any roadmap across all official channels
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Quantum blocker: No quantum migration roadmap or mitigation design exists
Assurance: Extensive search of the TUSD website, whitepaper (February 2026), and GitHub repositories reveals zero content related to quantum migration planning.
Migration Mechanism, Governance & Ecosystem Coordination
Migration accessibility and defaults
Claim: No PQ/hybrid account creation, wallet tooling, migration prompts, or user education exists for TUSD.
Coverage basis: Absence of any migration tooling or user-facing quantum features
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: Users can still create new quantum-vulnerable accounts by default with no warnings or migration path
Assurance: TUSD minting and redemption occur through the TUSD web app and banking partners. The app provides no quantum-related warnings, no PQ account options, and no migration prompts.
Migration Mechanism, Governance & Ecosystem Coordination
Migration enforcement and coordination
Claim: No migration enforcement mechanisms, exchange coordination, custody coordination, or unsafe-path blocking exists for TUSD.
Coverage basis: Absence of any enforcement or coordination mechanisms
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: No enforcement mechanisms to prevent unsafe fallback to quantum-vulnerable systems
Assurance: TUSD is listed on 100+ exchanges. No exchange has published TUSD-specific quantum migration attestations or coordination plans.
Migration Mechanism, Governance & Ecosystem Coordination
Emergency disclosure, incident-response, or governance process for quantum-related vulnerabilities
Claim: No quantum-specific emergency disclosure, incident-response process, or governance mechanism exists for TUSD.
Coverage basis: Absence of any quantum-specific incident response documentation
Implementation score: 0 · Evidence confidence: High
Issue classification: assurance-only caveat · Score treatment: score-reducing
Assurance: The TUSD whitepaper's risk section covers third-party risks, theft/loss, market value risk, and redemption risk but contains no mention of cryptographic or quantum risks.
Algorithm & Implementation Assurance
Uses NIST-standardized, standards-track, or broadly reviewed PQC/hybrid-PQC algorithms
Claim: TUSD uses no PQC or hybrid-PQC algorithms. All cryptography is classical ECDSA inherited from host chains.
Coverage basis: Verified absence of PQC in contract code and host-chain protocols
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: No PQC or hybrid-PQC algorithms in use
Assurance: The token contracts contain no cryptographic primitives beyond standard ERC-20 patterns.
Algorithm & Implementation Assurance
Independent cryptographic and implementation audit for the quantum-critical scope
Claim: No independent cryptographic audit exists for TUSD's quantum-critical security properties.
Coverage basis: Absence of quantum-focused audit; presence of classical-only audits
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: No audit addresses PQC algorithm selection, side-channel resistance of a hypothetical PQC implementation, or quantum threat modeling.
Since there is no PQC implementation to audit, the absence of a quantum-focused audit is a natural consequence of the project's Stage 0 status.
Algorithm & Implementation Assurance
Open-source, reproducible implementation
Claim: The TUSD smart contract code is verified on Etherscan and available in public GitHub repositories. However, no PQC implementation exists to be open-source or reproducible.
Coverage basis: Verified contract + public repos; no PQC code
Implementation score: 0 · Evidence confidence: High
Issue classification: none · Score treatment: not applicable
Assurance: The classical ERC-20 implementation is open-source and verified. For the quantum-critical scope, there is no PQC implementation to evaluate.
The GitHub repositories appear largely historical/archived, with the most recent updates predating 2022.
Algorithm & Implementation Assurance
Parameter agility and future upgrade path documented
Claim: No parameter agility or cryptographic upgrade path is documented for TUSD. The proxy upgrade mechanism exists for contract logic but has no documented plan for cryptographic migration.
Coverage basis: Absence of cryptographic upgrade documentation
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: The OwnedUpgradeabilityProxy pattern does allow contract upgrades, which could theoretically support a future PQC migration. However, no documentation describes how cryptographic parameters would be upgraded.
Algorithm & Implementation Assurance
Stateful-signature safety, side-channel, fault-injection, state-management, hardware-wallet, HSM, or custody implementation risks
Claim: No stateful PQC signatures (XMSS/LMS) are used or planned, and no side-channel analysis exists for the current ECDSA-based admin key infrastructure.
Coverage basis: No stateful signature deployment
Implementation score: 0 · Evidence confidence: High
Issue classification: none · Score treatment: not applicable
Algorithm & Implementation Assurance
Performance and resource-impact analysis for PQ signature/verification costs
Claim: No performance or resource-impact analysis exists for PQC deployment on TUSD or its host chains, as no PQC implementation is planned or deployed.
Coverage basis: Absence of PQC deployment or planning
Implementation score: 0 · Evidence confidence: High
Issue classification: none · Score treatment: not applicable
Report metadata