Arbitrum One inherits Ethereum's primitives at the user layer and posts batches as Ethereum calldata or EIP-4844 blobs. ArbOS 51 Dia enabled EIP-2537 BLS12-381 precompiles. BoLD's fraud-proof game uses deterministic Merkle proofs over Keccak-256 commitments to WAVM execution traces. Stylus contracts execute compiled WASM and can implement custom cryptographic verifiers, but no PQC primitive shipped in any audited Stylus precompile.

0 PQ families deployed. Arbitrum One has zero post-quantum cryptography in active production use. No lattice, hash-based, code-based, or isogeny family has shipped.

No NIST FIPS 203/204/205 PQC primitive deployed by Arbitrum or Offchain Labs. No public mapping exists.

BoLD reference implementation audited by Trail of Bits (multiple reports 2024-2025) but no machine-checked formal proofs published. Relies on go-ethereum's crypto/secp256k1 and standard libsecp256k1 wrappers (industry-standard but not Formosa/Jasmin-grade). Tier 1 (classical ECC + Keccak-256), Tier 2 for BLAKE-style internals.

Arbitrum One holds approximately $15.2B–$16.8B TVL (L2BEAT, DefiLlama 2026 Q1), the largest of any L2. EOAs use ECDSA secp256k1; the public key is revealed on first transaction. All TVL sits behind keys whose pubkeys are or can be derived from observed signatures.

Arbitrum One has been live since 2021-08-31 (~56 months at evaluation date). Significant unmoved-balance addresses exist (bridge contracts, treasuries, dormant LP positions). Ethereum-format addresses do not directly reveal the pubkey, but any prior outbound tx already exposed the pubkey on Ethereum or Arbitrum.

Sequencer batch-poster ECDSA signatures and Ethereum L1 state-root commitments are forgeable post-Shor against historical chain history. No retro-signing or post-fact PQ wrapping mechanism exists.

Sequencer feed and public RPC endpoints served over standard TLS 1.3 (typically X25519/P-256 ECDHE + AES-GCM). No documented hybrid PQ KEM in use on the public sequencer feed. Validator-to-DAS gossip on Nova uses BLS-key authentication for committee membership but session encryption defaults to TLS.

Pseudonymous transparent EVM ledger; full tx graph public.

Tx ordering controlled by a single Offchain Labs sequencer (Nakamoto coefficient = 1 for sequencing). Public RPC concentrated among Alchemy/Infura/QuickNode. No public mempool, txs go directly to the sequencer, then publish in batches; this reduces front-running surface but increases observability of pre-confirmation order to the operator.

Canonical Arbitrum Bridge produces direct on-chain linkage between Ethereum L1 deposits and L2 receipts. Third-party bridges (LayerZero, Hop, Across) make the L1↔L2 hop traceable through public observers.

No shielded pool on Arbitrum One. ECDSA Shor-breaks the limited privacy that exists from address pseudonymity once linked to identity off-chain.

No on-chain mixer integrated into Arbitrum One protocol.

Arbitrum has live, production-shipped crypto-agility surfaces. EIP-7702 (EOA delegation) is live since ArbOS 40 Callisto (activated 2025-06-17 on Arbitrum One and Nova). EIP-2537 BLS12-381 precompiles are fully enabled in ArbOS 51 Dia (activated 2026-01-08). Stylus (live since 2024) lets developers deploy WASM-based custom precompiles for any cryptographic primitive without an L1 hard-fork, genuinely novel agility for a rollup. ArbOS upgrades go through DAO + Security Council governance with established cadence. No protocol-level algorithm switch for the user-EOA signature scheme has shipped, however, so the agility is presently latent.

ERC-4337 supported on Arbitrum One since 2023; EIP-7702 live since 2025-06-17 enabling EOAs to delegate to smart-contract code without changing address. Client-layer PQ migration is architecturally tractable: a user could opt into a smart-account that verifies an ML-DSA or SLH-DSA signature inside contract code or via a Stylus precompile. Arbitrum is NOT a member of the Optimism Superchain. No Arbitrum-specific client-layer PQ migration formally documented or deployed.

Coordinated upgrade record over 36 months: Nitro migration (2022), Stylus mainnet (2024), BoLD permissionless validation (activated 2025-02-12), ArbOS 31/32 (2024), ArbOS 40 Callisto (2025-06-17), ArbOS 51 Dia (2026-01-08). Each upgrade went through DAO vote + Security Council approval + multi-week timelock. No contested or stalled forks.

Stylus + EIP-7702 + smart-contract wallets make a hybrid (classical ECDSA + PQ ML-DSA) signature path architecturally constructible. No such hybrid has been spec'd or shipped by Arbitrum or Offchain Labs. The architectural primitives exist; the migration document does not.

Arbitrum has no stateful hash scheme (XMSS/LMS/leanXMSS) at the protocol level; default-pass per v3.1.0 rule.

N/A. Arbitrum One is a rollup with a single sequencer for transaction ordering and a permissionless fraud-proof game (BoLD) for state validity. There is no BFT consensus with BLS signature aggregation at the Arbitrum One layer; consensus is inherited from Ethereum L1.

Zero PQ signatures observed in the Arbitrum One transaction stream. No PQ KEM in TLS termination documented for Offchain Labs sequencer endpoints. No Stylus precompile shipped that exposes ML-DSA/ML-KEM/SLH-DSA.

A grep of the Nitro reference client (github.com/OffchainLabs/nitro) yields no ML-DSA, ML-KEM, SLH-DSA, Falcon, XMSS, or SPHINCS+ implementation. The crypto package uses go-ethereum primitives.

The sequencer is centralized at Offchain Labs (single signer, secp256k1). BoLD's permissionless validators bond using ETH and post Merkle-proof commitments under standard Ethereum-format keys; no PQ key adoption among validators.

VOIDED to 0 per v3.1 rule (5a = 0). No PQC-specific dated milestones published by Offchain Labs, the Arbitrum Foundation, or any Arbitrum DAO AIP.

Trailing-12-month PQC announcement count from Offchain Labs / Arbitrum Foundation channels: 0. Shipped PQ on mainnet: 0. Ratio: 0/0 (treated as 1.0, no washing). Arbitrum has not over-promised; it has not promised at all. The cleanest possible washing posture but also the absence of a roadmap.

No PQ signature deployed; no mainnet bytes-per-block multiplier observable.

Top-3: MetaMask, Rabby, Safe (smart-account on Arbitrum). Hardware: Ledger, Trezor. Trezor Safe 7 (released 2025) ships ML-DSA-44 device attestation + SLH-DSA-SHA2-128s bootloader signature verification, the only top-3 wallet vendor with shipped PQ in production, and it is for device attestation/firmware integrity, not transaction signing. ERC-4337 / Safe modules CAN be extended with a PQ verifier (e.g., a Stylus contract), but no production deployment exists.

Top-3: canonical Arbitrum Bridge, LayerZero, Across. Canonical Arbitrum Bridge inherits ECDSA + Keccak-256 + (where applicable) BLS12-381 from Ethereum L1 settlement; no PQ verification path. LayerZero has stated quantum durability is on the long-term agenda but no shipped PQ DVN configuration. Tile is the chain's largest concrete PQ exposure.

Top-3: Coinbase Custody, BitGo, Fireblocks. All three support Arbitrum-native USDC, ETH, ARB. None have a publicly shipped PQ key migration on Arbitrum mainnet. Industry trade press describes custodians as piloting quantum-resistant key migration roadmaps aligned with NIST PQC standards, pilot, not shipped.

Top-3 RPC: Alchemy, Infura, QuickNode → no public PQ TLS termination roadmap. HSM: AWS KMS shipped ML-DSA support 2025-06 (cloud HSM signing for FIPS 204), Thales/YubiHSM pilots. TEE attestation chains classical. AWS KMS ML-DSA is the only concrete-deployed PQ infra primitive; it is generic, not Arbitrum-bound.

Sequencing centralized at Offchain Labs (NC=1 for ordering). BoLD permissionless validation live on mainnet since 2025-02-12 lets any party bond and post fraud proofs, material decentralization improvement at the validation layer, but ordering remains a single point of trust.

36-month track record of coordinated upgrades through DAO + 12-member Security Council. ArbOS releases Callisto (June 2025) and Dia (January 2026) executed on schedule. Sequencer outages (Sep 2023, Dec 2023) handled within hours with public RCAs.

Offchain Labs (Co-founders Steven Goldfeder, Ed Felten, Harry Kalodner, Princeton-origin) is the named protocol-development entity. Arbitrum Foundation handles governance and treasury. Both have public mandates and disclosed boards. No designated PQ lead within either entity.

Sequencer outage incidents recovered without contested forks. No precedent of a coordinated cryptographic-primitive change under active attacker pressure. BoLD permissionless transition (Feb 2025) succeeded against the threat model of malicious validators rather than active in-flight adversary.

No quantum canary (community honeypot, rate-limit, cryptographic tripwire, or automated response) embedded in Arbitrum One protocol.