Engineering a Post Quantum Fortress Inside the Citadel Archite

Engineering a Post-Quantum Fortress: Inside the Citadel Architecture
Welcome to an inside look at Citadel, a new hybrid post-quantum key governance architecture built in Rust
. In this video, we explore how Citadel protects against "harvest-now-decrypt-later" attacks, a growing threat where adversaries store encrypted data today to decrypt it when powerful quantum computers become available
.
To bridge the gap between classical and post-quantum cryptography, Citadel combines the proven classical security of X25519 with the quantum-resistant ML-KEM-768 algorithm
. This "dual-layered" hybrid envelope ensures that an attacker would need to break both systems to compromise the data
.
Beyond the cryptographic primitives, we dive deep into Citadel's operational governance layer, which includes:
A four-level key hierarchy where the key management layer itself is post-quantum protected
.
Fail-closed, domain-scoped replay prevention that denies decryption if the replay store is unreachable
.
A two-layer capability authorization model that verifies every single operation
.
An adaptive threat-response engine that automatically tightens rotation intervals and usage limits when it detects anomalous access or failed authentications
.
Built for both safety and speed, Citadel leverages Rust's strict compile-time type safety to prevent key confusion and achieves a lightning-fast 65 µs encryption latency for 1 KB payloads
.
Explore the open-source cryptographic core (citadel-envelope) on GitHub: https://github.com/mrcord77/rust_citadel

https://youtu.be/gUZuns14JQw