quantum-safe

Production-grade post-quantum cryptography for Python. Hybrid KEM, hybrid signatures, migration tooling, protocol helpers, and a CI-ready audit scanner — all in one library.

from quantum_safe import HybridKEM, HybridSign

# Hybrid key exchange — X25519 + ML-KEM-768
kem = HybridKEM()
kp  = kem.generate_keypair()
ct, ss = kem.encapsulate(kp.public)
ss2    = kem.decapsulate(kp.secret, ct)
assert ss == ss2

# Hybrid signatures — Ed25519 + ML-DSA-65
signer = HybridSign()
kp     = signer.generate_keypair()
sm     = signer.sign(b"document", kp.secret, context=b"myapp-v1")
signer.verify(sm, kp.public)

Why hybrid?

During the NIST transition period, every major security body (NIST, CISA, BSI, NCSC) recommends combining a classical algorithm with a PQC algorithm. Both would need to be broken simultaneously for an attacker to succeed. This library makes hybrid mode the default — you must explicitly opt out.

---

Getting started

• Installation
• Quick start
• Core concepts

Guides

• Key encapsulation (KEM)
• Digital signatures
• Protocol helpers
• Migration tooling
• Audit and compliance
• CLI reference
• Benchmarking

API reference

• Types (quantum_safe.types)
• KEM (quantum_safe.kem)
• Signatures (quantum_safe.signatures)
• Protocols (quantum_safe.protocols)
• Migration (quantum_safe.migrate)
• Audit (quantum_safe.audit)
• Backends (quantum_safe.backends)
• Exceptions (quantum_safe.exceptions)

Project

• Changelog