03 pqc accounts

PQC (Post-Quantum Cryptography) accounts use ML-DSA-65 (Dilithium3) to provide quantum-resistant security against future quantum computing attacks.

Overview

PQC accounts are designed for long-term security in the quantum computing era. They use ML-DSA-65 (Module-Lattice Digital Signature Algorithm), which is standardized in NIST FIPS 204.

Technical Specifications

Key Sizes

ML-DSA-65 Details

• Algorithm: ML-DSA-65 (CRYSTALS-Dilithium3)

• NIST Level: Level 3

• Classical Security: ~192 bits

• Quantum Security: ~128 bits

• Standard: NIST FIPS 204

Address Derivation

Version 1 (Recommended - Quantum-Safe):

• Uses full 32-byte hash

• Provides 256-bit classical / ~128-bit quantum security

• Format: pqc1p... (Bech32m)

Version 0 (Legacy - Not Quantum-Safe):

• Uses last 20 bytes of hash

• Provides 160-bit classical / ~80-bit quantum security

• Format: pqc1q... (Bech32)

• ⚠️ Not recommended for new accounts

Signature Format

Key Difference from ECDSA:

• ECDSA signatures are recoverable (public key derived from signature)

• PQC signatures are non-recoverable (public key must be included)

Address Formats

Bech32m Format (Version 1 - Recommended)

• HRP: pqc (mainnet) or tpqc (testnet)

• Version: p (version 1, quantum-safe)

• Length: ~62 characters

• Encoding: Bech32m (BIP-350)

Legacy Bech32 Format (Version 0 - Deprecated)

• HRP: pqc (mainnet) or tpqc (testnet)

• Version: q (version 0, legacy)

• Length: ~42 characters

• Encoding: Bech32 (BIP-173)

• ⚠️ Not quantum-safe - use Version 1 instead

Algorithm-Specific HRPs

When to Use PQC Accounts

Security Considerations

Quantum Resistance

• Grover's Algorithm: Address provides ~128-bit quantum pre-image resistance

• Shor's Algorithm: ML-DSA-65 is resistant to Shor's algorithm

• Security Level: NIST Level 3 (~128-bit quantum security)

Classical Security

• Security Level: ~192-bit classical security

• Attack Resistance: Resistant to all known classical and quantum attacks

• Longevity: Designed to remain secure for decades

Best Practices

1. Use Version 1 Addresses: Always use 32-byte Bech32m addresses (pqc1p...)

2. Secure Key Storage: Private keys are large (4KB) - ensure secure storage

3. Backup Recovery: Maintain secure backups of private keys and recovery phrases

4. Network Compatibility: Verify network supports PQC before using

Account Creation

From Random Generation

From Mnemonic

From Key Import

Transaction Signing

PQC transactions use DilithiumTx format:

• Transaction Type: Type 2 (DilithiumTx)

• Signature Format: Public key + signature included

• Gas Cost: Higher due to larger signature size (~5KB overhead)

Gas Cost Considerations

PQC transactions have higher gas costs:

Compare to ECDSA: ~65 bytes = ~1,040 gas

Gas Cost Ratio: PQC is approximately 80x more expensive than ECDSA.

Limitations

1. Larger Transaction Size: ~5KB overhead per transaction

2. Higher Gas Costs: Significantly more expensive than ECDSA

3. Limited Compatibility: Not all networks/tools support PQC

4. Non-Recoverable Signatures: Public key must be included in transaction

Migration Considerations

If you need ECDSA compatibility:

1. Create Hybrid Account: Generate account with both ECDSA and PQC keys

2. Transfer Funds: Move funds from PQC to Hybrid account

3. Maintain Security: Hybrid provides both quantum resistance and compatibility

See Hybrid Accounts for details.

Related Documentation

• Account Comparison - Compare all account types

• ECDSA Accounts - Legacy compatible accounts

• Hybrid Accounts - Combined ECDSA + PQC

• Address Formats - Detailed address format guide

• When to Use Each Account Type - Decision guide