The M1 spec does not document BLS12-381 at consensus; consensus vote signatures are Ed25519. Whether pairing-based code paths persist in subsystems inherited from upstream Aptos framework is undocumented at the M1 spec level; partial credit reflects this gap.

0 PQ families. The chain runs Ed25519 (DL-based) signatures plus SHA-3 hashing, both classical.

No NIST PQC primitives deployed. The active cryptographic surface contains only NIST-classical primitives (Ed25519 ≈ 128-bit classical security; SHA3-256 ≈ 128-bit post-Grover collision resistance).

The Movement codebase forks Aptos Core (movementlabsxyz/movement-aptos-core), inheriting Aptos's Move Prover formal-verification tooling for Move smart contracts. Library provenance: forked Rust crates from aptos-labs/aptos-core. No published audit specifically of Movement-divergent cryptographic code. Cryptanalytic-maturity tier: Ed25519 = tier 1 (classical mature), SHA-3 = tier 2.

MOVE TGE 2024-12-09; M1 mainnet 2025-12-22. All accounts use Ed25519; pubkeys are revealed at first transaction under the Aptos/Move account model. Token-price collapse (~$0.017 USD on 2026-05-01) reduces dollar-value at risk but not the fraction of accounts with revealed pubkeys.

Sovereign-L1 horizon is ~4 months at evaluation; Mainnet Beta as L2 launched 2024-11-30, public phase 2025-03-10. Token-dump aftermath produced account abandonment; abandoned accounts with revealed pubkeys remain Forge-exposed indefinitely.

All historical Ed25519 signatures across M1 and the prior L2/Mainnet-Beta history are forgeable post-Shor. No published signature-scheme transition plan, no archival re-anchoring, no hash-based commitment to long-term-valid history.

Movement RPC endpoints (mainnet.movementnetwork.xyz plus partners Sentio, Hello Moon, BlockPi, Lava, Ankr, NodeOps) terminate TLS via standard X25519/RSA handshakes. No hybrid PQ KEM at any partner. Validator gossip (Aptos-derived AptosNet) uses noise-NK over X25519.

Movement is a transparent ledger; the Move account model and Move-VM execution traces are publicly observable at the block-explorer level. No native shielding; no zk-account scheme.

Six partner RPCs (Sentio, Hello Moon, BlockPi, Lava, Ankr, NodeOps) plus the Movement primary endpoint. No traffic-share telemetry published; top-3 concentration is plausibly high but not measurable. Mempool propagation inherits Aptos's transparent design. Validator metadata-retention policy is undeclared.

Movement integrates LayerZero (layerzero-devtools is a forked repository under movementlabsxyz). Bridge transactions between Ethereum L1 and Movement create observable source-destination address pairs. No mixing or bridge-level privacy primitive is deployed.

Movement does not deploy on-chain encryption (no ElGamal note ciphertexts, no DL ring signatures, no zk-SNARK shielded pool at protocol level). Post-Shor, the marginal retroactive privacy loss beyond what is already public from a transparent ledger is small.

No mixnet, no on-chain commit-reveal mixing, no cryptographic shuffle, no cMix-class IT-secure mixing.

The Aptos-derived account model exposes rotate_authentication_key, allowing the signature scheme bound to an account to change without changing the address. Movement has no published production instance of rotating to a new signature family, inherited capability, no deployed precedent.

Move account model supports authentication-key rotation natively (AA-equivalent at the Move framework level). No Movement-specific client-layer PQC path documented.

Movement executed an L2-to-L1 architectural pivot completed 2025-12-22. The sovereign-L1 chain is ~4 months old; coordinated-upgrade history is short. Concurrent governance turbulence (May 2025 leadership terminations, Foundation-to-Move-Industries operational transfer completed alongside M1 launch) reduces credibility of the coordination record.

Architecturally possible via the Move authentication-key abstraction. Movement has not announced or scoped a hybrid PQ deployment. Aptos AIP-137 (SLH-DSA-SHA2-128s, optional account scheme) is 'Accepted' with last-call-end 2026-02-09; not activated on Aptos mainnet. Movement has not stated whether it intends to merge upstream AIP-137 when it lands.

N/A, no stateful hash scheme (XMSS, LMS, leanXMSS) is deployed. Default 15.

N/A, Movement M1 consensus uses Ed25519 validator-vote signatures per the published M1 protocol specification. Ed25519 is non-aggregating; the BFT aggregation-path sub-score (which targets BLS-aggregating consensus paths) is N/A and excluded from Dim 4 normalization, consistent with v3.1 rule.

0% of Movement M1 mainnet signing traffic is on PQC primitives. All transaction signatures are Ed25519.

No PQC code merged in the Movement consensus client. The Movement fork does not advertise any divergent PQC commit. Upstream Aptos has not yet merged AIP-137 implementation.

0% of validators run PQC keys. Validator-set composition uses Ed25519 keys per the protocol specification.

Voided per v3.1 rule (5a = 0). No published dated PQC migration milestones from Movement Foundation or Move Industries.

Trailing-12-month PQC announcements from Movement: 0. Trailing-12-month shipped PQC: 0. Ratio is 0/0 (undefined); no inflation. No washing tag fires.

Undisclosed, no PQ scheme is deployed and no public sizing analysis is published by Movement. Per the v3.1 scoring table, 'undisclosed = 0.'

Top-3 wallets recommended by Movement docs: OKX Wallet, Razor Wallet, Nightly Wallet. None publishes a PQC roadmap. Petra is Aptos-specific and is not in Movement's recommended-wallet list per Movement's own documentation; v2 baseline wallet list is corrected.

LayerZero is the dominant cross-chain messaging integration (movementlabsxyz/layerzero-devtools is a public fork). Stargate (LayerZero-acquired 2025) provides liquidity transport. LayerZero has no published PQC roadmap. Wormhole and Celer are secondary or absent integrations on Movement.

Post-Coinbase-delisting (2025-05-15), institutional custody coverage for MOVE narrowed. Fireblocks, BitGo, Anchorage have not published Movement-specific PQC support. No top-3 custodian publishes a Movement-specific PQC roadmap.

RPC partners: Sentio, Hello Moon, BlockPi, Lava, Ankr, NodeOps. No partner publishes a Movement-specific PQC RPC roadmap. HSM and TEE attestation chains for Movement validator infrastructure are not documented at the Foundation level.

M1 validator-based consensus is ~4 months old. Validator-count and Nakamoto-coefficient telemetry are not published in a Foundation-grade transparency report. The 2025 token-dump scandal concentrated active stake among long-term holders. Client diversity is single-client (movementlabsxyz/movement).

L2-to-L1 migration announced May 2025, executed December 2025. The same period included co-founder termination, leadership turnover, Coinbase delisting, and the Move Industries restructure. Coordination capacity on scheduled architecture changes is offset by governance turmoil.

Move Industries is the named primary operating service provider; CEO Torab Torabi, President Will Gaines, CTO Young Yang Liauw. Movement Network Foundation oversees governance. No named PQC working group, no named PQC technical lead, no published PQC mandate.

The 2025 token-dump event (undisclosed market-making contract, ~$38M intermediary dump, Coinbase delisting, Binance market-maker freeze) was answered with leadership termination and corporate restructuring, not a coordinated technical fork or rollback. No PQC-relevant adversarial precedent.

No canary, no Hourglass-style rate-limit, no cryptographic tripwire embedded in consensus, no automated-response mechanism.