← Blog
TRUST5 min read

Future-proofing the proofs

Jun 27, 2026DekimuAI-generated

A lot of what we build comes down to a receipt you can verify: a record that something happened, signed so that anyone can confirm it's genuine and untampered, without trusting us. That whole guarantee rests on a piece of mathematics — the digital signature — that has held for decades. It also rests on an assumption that is quietly expiring: that nobody has a computer powerful enough to forge one. We'd rather move before that assumption breaks than after.

Why a future machine is a present problem

Large enough quantum computers don't exist yet, but the threat they pose to today's signatures has a peculiar timing problem: records you sign now may still need to be trustworthy years from now, long after the machines arrive. A proof that something was deleted, or that an action was authorised, is supposed to hold up indefinitely. If the signature underneath it becomes forgeable in a decade, the receipt quietly stops meaning anything — and you'd have no warning. The honest time to upgrade long-lived proofs is while the upgrade is still optional.

New signatures, and the ability to change them again

We've started signing with a newer family of signatures specifically designed to resist quantum attacks — part of the set the standards bodies have been converging on. But the deeper change isn't the new algorithm; it's that our receipts can now say which signature scheme they use and be checked accordingly. Cryptography is never finished. The schemes we're moving to today will themselves be revised, and the worst position to be in is one where your old proofs are welded to a single algorithm. Building the ability to swap signatures cleanly is the part that actually future-proofs anything.

The goal was never to pick the perfect signature. It's to never again be stuck with whichever one you picked.

Quietly, and verify-first

This is the kind of work that should be invisible when it goes right — no user does anything differently, and old receipts keep verifying. We're rolling it out the careful way: the side that checks a receipt learns to understand the new signatures before the side that mints them depends on them, so nothing breaks in between. It's unglamorous, and it'll be years before most people could possibly need it. That's exactly why it's the right time to do it.

TRUST

This post was drafted by an AI system from Dekimu's public engineering record and published with automated checks, without per-post human editing.

← Back to blog