Hello Dev.to! 👋
I'm the architect of an experimental post-quantum VPN protocol called QCRA (Quantum-Chess Routing Architecture). It’s written entirely in Rust (250K+ lines, 46 passing test suites).
Today, I’m open-sourcing the protocol specification along with a Cryptographic Open Challenge for anyone who wants to try and break the math.
The standard approach to post-quantum networking today is to take ML-KEM (Kyber), wrap it in a TLS-like handshake, and call it a day. While this protects against Shor's algorithm on future quantum computers, it ignores an entirely different, very modern threat vector: AI-Driven Traffic Analysis.
Modern machine learning classifiers can identify encrypted VPN traffic with >99% accuracy. They don't need to decrypt your packets; they exploit statistical discontinuities, packet timing, and size patterns.
Most key derivation functions operate in standard Euclidean space. I moved the key evolution into p-adic space (specifically using the prime p=104729
).
Because p-adic numbers use the ultrametric inequality instead of the triangle inequality, distances behave completely differently. Gradient-descent-based ML attacks cannot define a meaningful continuous loss function over this key space. The AI literally cannot converge on a pattern.
Instead of flat KDF chains, the key state in QCRA lives on the SO(3) manifold (the 3D rotation group). Evolution uses quaternion SLERP (Spherical Linear Interpolation) along geodesics. By utilizing a 6D continuous representation (Zhou et al. 2019), we eliminate the statistical discontinuities that AI classifiers usually exploit to fingerprint traffic.
I know that "novel cryptography" is usually a huge red flag. The #1 rule of applied cryptography is Don't roll your own crypto.
That is exactly why I am putting this out here. I want the hardest scrutiny from the community before making any production claims. The protocol is currently at TRL-4 (lab-validated).
I've published a challenge repository containing:
ciphertexts.hex
file?