NIST FIPS 203 standardised post-quantum key encapsulation in 2024. CNSA 2.0 mandates post-quantum cryptography for US national-security systems by 2030. EU regulation (NIS2, CER, the emerging Cyber Resilience Act) is following. Industrial sensors, satellites, drones, and connected vehicles deployed today routinely have 15-to-25-year operational lifetimes — well past the realistic horizon for a cryptographically relevant quantum computer.
EdSSA Nano was post-quantum from the first design draft. The bootstrap handshake uses post-quantum primitives standardised by NIST. The bootstrap material is discarded immediately after the in-memory state is initialised, so even a future quantum-break of the handshake itself cannot recover authentication state established before the break.
This is structurally different from a vault-based system bolting post-quantum primitives onto a centralised authority that still has to be reachable per-request. Structural Authentication removes the round-trip altogether — there is no per-request quantum-vulnerable conversation to intercept, because there is no per-request conversation.
Forward secrecy from a future quantum break is not an upgrade we offer. It’s the architecture.