Post-Quantum Financial Infrastructure

The settlement layer that survives Q-day.

Every ledger in production today secures yesterday's transactions with cryptography that a quantum computer will retroactively break — and enforces compliance with services bolted on beside the data. TrustDB is a data substrate where post-quantum protection and compliance are properties of the storage layer itself. Not middleware. Not policy. Structure.

Why now

Four deadlines are converging on the same missing layer.

JANUARY 1, 2027

CNSA 2.0 makes post-quantum mandatory

New US National Security System acquisitions must use FIPS 203/204 (ML-KEM / ML-DSA). Systems that bolted classical crypto into the storage path face a re-architecture, not an upgrade.

HAPPENING NOW

Harvest now, decrypt later

Everything stored today under RSA and elliptic-curve cryptography is already being collected for retroactive decryption. For a ledger, the exposure is permanent: the history is the product.

JULY 2026

MiCA's Travel Rule is law

EU institutions must prove — not document — that originator and beneficiary information travels with value. Bolt-on compliance programs now have to demonstrate the bolt can't be removed.

US LAW, 2025

The GENIUS Act legalized the category

Regulated dollar tokens are now a permitted, supervised business — and the statute requires exactly the controls (sanctions screening, freeze authority, auditability) that retrofitted chains struggle to provide.

"Competitors enforce compliance and integrity with layers. TrustDB makes their violation structurally impossible — the math does not produce the output unless the policy was satisfied when the key was derived." — the one-sentence argument
A substrate, not a chain

Five properties built into the kernel — not placed in front of it.

TrustDB is a post-quantum, confidence-native data substrate built in Rust. Crypto settlement is not what it is — it's the first use case the substrate makes possible without the compromises every other approach accepts.

The storage layer is the cryptographic layer

Every record is written and read under CNSA 2.0-aligned post-quantum protection (ML-KEM-1024 hybrid key encapsulation; ML-DSA-87 signatures). There is no separate encryption service to remove, misconfigure, or migrate.

Governance is the data structure

Access control, audit, and compliance are properties of the record itself. A query that would violate policy doesn't get blocked — it structurally cannot produce output.

Provenance is structural, not logged

Every output is cryptographically anchored to the records that produced it. Ask "why?" of any result and receive a verifiable path back to sources, confidence, and governance state at the time.

Selective disclosure is native

Per-observer, per-jurisdiction disclosure is a first-class operation — prove a claim to a regulator without revealing identity or balance to anyone else.

Crypto-agility without forks

Signature algorithms are governed, versioned properties of the network. When standards move again — and they will — the network rotates without a hard fork and without changing a single address.

What's live

Built and running — and what we're standing up next.

CapabilityStatusNotes
Post-quantum storage layer SHIPPED Production Rust; NIST-standard algorithms, known-answer-test gated.
Compliance-by-construction gate SHIPPED Travel-rule envelope, sanctions anchoring, and auditable history enforced at write time — end to end.
Federated, fault-tolerant ledger BUILT Multi-node replication with deterministic finality; public multi-operator network is being stood up.
iOS wallet client BUILT Thin, honest client over the substrate — integer-exact amounts, compliance envelope on send.
Public network status LIVE Hourly snapshot of the running gateway — full real-time explorer ships with the public multi-operator network.

How we make claims

Every public claim on this site is backed by shipped code or it isn't made. Anything aspirational is labeled as such. We maintain an internal "honest gaps" register as an engineering discipline — if a claim can't be tied to running code and a passing test, it moves to that register instead of this page. Read the claims-and-verification page →

Who this is for

Regulated institutions that need settlement infrastructure to outlive the cryptography it was born with.

Stablecoin issuers under the new US framework. Banks piloting tokenized deposits and wholesale settlement. Defense and government programs facing the 2027 post-quantum acquisition deadline. If your ledger has to be defensible in 2035, the storage layer is the decision that matters.

ashley@digital-fabric.com Technical briefings and benchmark detail available under NDA.