Quantum-resistant security,
built sovereign.
Cadarn is a cryptography library that protects your data against the quantum era — using the exact algorithms the UK's NCSC recommends, built on independently audited foundations. No hand-rolled crypto. No compromises on sovereignty.
The threat is already here
Attackers don't need a quantum computer today to steal your data today. They can harvest now and decrypt later — capturing encrypted traffic and archives now, and unlocking them the moment a quantum computer can break today's public-key cryptography.
Long-lived secrets are at risk
Medical records, financial data, IP, state secrets, unreleased designs — anything that still matters in 10 years needs protecting now.
The clocks are set
NIST published the post-quantum standards in 2024. The UK's NCSC has set a migration path to 2035, with critical systems moving sooner.
Migration takes years
Rolling quantum-safe crypto across real systems is a multi-year programme. The organisations that start early are the ones that stay protected.
What Cadarn is
Cadarn is a compact, deployable quantum-resistant security library. It gives your product post-quantum encryption, signatures, tokens, licensing and a tamper-evident audit trail — through a clean, modern API.
Crucially, Cadarn does not invent its own cryptography. The core algorithms come from independently audited, widely-used implementations. Cadarn is the trustworthy composition around them — the part that's easy to get wrong, done right.
JavaScript / Node today, with native platform SDKs on the roadmap.
- Post-quantum key exchange and digital signatures
- Hybrid encryption at rest and in transit
- Signed, rotating tokens and licence verification
- Hash-chained, signed tamper-evident audit log
- Ships with an SBOM and a cryptography bill of materials
Who it's for
Any team handling data that must stay secret for years — and anyone who has to prove they took quantum risk seriously.
Financial services
Payments, records and transactions with long confidentiality lifetimes.
Healthcare
Patient data that is sensitive for a lifetime, under strict regulation.
Government & defence
Sovereign systems that must meet national assurance expectations.
IoT & embedded
Long-lived devices in the field that can't be re-keyed easily.
Product & SaaS teams
Add a credible "quantum-resistant" security layer without a crypto team.
Creative & IP
Unreleased designs, models and media — high-value, harvest-now targets.
What's inside
The standardised algorithms, plus the everyday building blocks a real product needs.
Key exchange
ML-KEM-768 — NIST FIPS 203. Establish shared keys that stay safe against quantum attack.
Digital signatures
ML-DSA-65 — NIST FIPS 204. Sign and verify data with post-quantum signatures.
Hybrid encryption
ML-KEM key encapsulation with HKDF-SHA256 and AES-256-GCM for authenticated encryption.
Tokens & licensing
Signed, rotating tokens and constant-time licence verification for anti-tamper entitlement.
Key rotation
Managed rotation so keys have a defined lifetime and a clean upgrade path.
Tamper-evident audit
A hash-chained, signed audit log — any modification or deletion is detectable.
Built right — and honest about it
- No hand-rolled cryptography. The primitives come from independently audited, widely-used libraries.
- NCSC-aligned. ML-KEM-768 and ML-DSA-65 are exactly the parameters the UK's NCSC recommends.
- UK-sovereign, non-Chinese supply chain by design.
- Full provenance — SBOM, cryptography bill of materials and documented threat model.
Independent audit under way
Cadarn is undergoing an independent cryptographic code audit and penetration test. We describe it as quantum-resistant — we will only describe it as certified once formal certification is complete. That honesty is the point.
Protect what still matters in ten years
Talk to us about deploying Cadarn, an audit copy, or licensing for your product.
cadarnsecurity@protonmail.chA product of MIIMAGINE AI LTD · United Kingdom