Active primitives well-named in foundation docs and nearcore. Inventory specific and complete; minor deduction for there being no single foundation-published 'all primitives' page.

Zero PQ families. Ed25519, secp256k1, threshold-ECDSA, threshold-EdDSA all reduce to elliptic-curve discrete log.

Ed25519 → 128-bit classical, 0 NIST-PQC; secp256k1 → ~128-bit classical, 0 NIST-PQC; SHA-256 → ~128-bit post-quantum (Grover-weaken). No NIST PQC scheme mapped at protocol level.

nearcore Ed25519 path uses ed25519-dalek (Rust, constant-time per upstream library convention); JS tooling uses tweetnacl. NEAR's Ed25519 verification rules are non-standard versus generic libraries, nearcore#3216 (closed 2025-06-10) documented this. No machine-checked formal verification of validator-client signing path. Chain Signatures MPC nodes (currently 8) run Cait-Sith-derived ECDSA + FROST-derived EdDSA. Cryptanalytic maturity tier 1.

NEAR-implicit accounts use the 64-character hex-encoded Ed25519 public key directly as the account ID. Named accounts (e.g. alice.near) store one or more access keys' public keys on-chain (full-access or function-call); access keys for any account that has ever signed are publicly readable via JSON-RPC view_access_key_list. Every funded NEAR account exposes the public key(s) controlling its balance.

Same architectural exposure as 2a. Implicit accounts cannot exist on-chain without their public key being the address; named accounts cannot have funds without at least one access key being on-chain. Dormant / lost NEAR accounts have the same exposure as active ones. No Bitcoin-style P2PKH wrapper.

NEAR transactions bind to a recent block hash and are not replayable beyond a short validity window. Historical signature material does not create new spend authority on its own. Long-term forgery risk concentrates on key-not-rotated accounts. Access-key model means key rotation is protocol-native, but no industry data on how often it is exercised at scale.

Validator network gossip and client-to-RPC connections rely on standard TLS/QUIC layers using classical X25519 / RSA / ECDH key exchange. No foundation declaration of a hybrid PQ KEM in the validator stack, RPC layer, or MPC node communications. Chain Signatures MPC (8 nodes) coordinates over classical channels.

Pseudonymous, fully transparent. Every transaction, account, and access-key entry is publicly readable from any RPC node or explorer. Human-readable named accounts (alice.near) further raise observability versus opaque hex addresses, many accounts are linked to off-chain identities through wallet UX or social handles.

RPC layer is concentrated. The near.org and pagoda.co foundation-operated public endpoints were deprecated; the recommended archival-rpc.mainnet.near.org is 'severely rate limited' with 'no paid plan available' per official documentation, pushing usage to FastNEAR, QuickNode, and Ankr as dominant production providers. No foundation-published per-provider request-share percentages.

Rainbow Bridge (NEAR ↔ Ethereum) and Aurora (NEAR's native EVM layer) link tx flows in the clear on both sides. Chain Signatures by design connects NEAR accounts to transactions on Bitcoin, Ethereum, Solana, Sui, Aptos, Stellar, TON, all transparent, making cross-chain linkage explicit and observable.

Because NEAR is already pseudonymous-transparent at protocol level, a future Shor break does not expose meaningfully more than is already on-chain. Retroactive privacy regression is small relative to chains with on-chain encrypted state.

No protocol-level mixnet, shuffle, or commit-reveal at consensus. No application-layer mixing infrastructure documented as live in NEAR ecosystem at audit cutoff.

NEAR's runtime-upgrade history shows coordinated protocol changes (Phase-1 sharding, Nightshade 2.0, stateless validation rollouts). The access-key data structure is curve-pluggable in principle (Ed25519 + secp256k1 already coexist in production), giving an algorithm-switch path without redesigning accounts. However, no NEP-level proposal currently extends PublicKey enum / signing rules to add a PQ scheme.

NEAR's account model is the strongest native-AA in the L1 cohort. Every named account supports multiple access keys per account, with two permission tiers (FullAccess, FunctionCall), keys are added, removed, and rotated by transactions, with no smart-contract wrapper required. A PQ migration is architecturally a key-add: attach a PQ access key alongside legacy Ed25519, then delete the legacy key. Lose 3pts because the PQ scheme is not deployed and there is no published client path or active migration volume.

NEAR mainnet has shipped multi-year coordinated upgrades (Phase 0, Phase 1, Nightshade 2.0 stateless validation) without contested forks. No public chain split. Coordination cadence has been steady across the period.

Architecturally, the access-key model could host hybrid PQ (a full-access PQ key alongside a full-access Ed25519 key, both authorized to spend, equivalent to OR-composition at the account layer). Nothing in the spec or NEPs declares this as the migration path. No commit-to-hash-of-both-pubkeys construction documented (Gate 1b would require it for OR-composition credit).

N/A, NEAR uses no stateful hash-based signature scheme. Default 15 by rubric.

N/A, NEAR validator block / chunk approvals use Ed25519 (non-aggregating) signatures rather than BLS aggregation in consensus. The Doomslug consensus design stores per-validator signatures on approvals (one signature per approving validator). Per v3.1 rubric, 4f is N/A for chains using non-aggregating signatures at consensus.

0%. No NEAR validator approval, account signature, or Aurora EVM signature uses a PQ primitive. No Chain Signatures MPC domain uses a PQ scheme.

0 bytes / 0 LOC of PQ signing or PQ KEM merged in nearcore. No pq- prefix module, no ML-DSA / ML-KEM / SLH-DSA / FN-DSA / Falcon dependency, no XMSS state-management code in the validator path.

0% of validator stake registered with a PQ key. Validator keys are Ed25519 per the node-operator key-management documentation.

VOIDED per v3.1 (5a = 0). Independent of the void, no foundation-published PQ migration milestones exist (no NEP, no roadmap entry, no foundation blog post matching 'post-quantum' / 'quantum-resistant' at the audit cutoff).

Announced PQC count (trailing 12 months, foundation channels) = 0; shipped PQC count = 0. Ratio 0/0 → no washing tag. Score 13/15 (best available given no evidence of shipping; ratio undefined).

Undisclosed. NEAR has not published per-block bytes-under-PQ analysis or chosen a PQ primitive whose footprint can be analyzed.

Top-3 wallets: MyNearWallet (web, non-custodial; NEAR-native), Meteor Wallet (browser extension), HERE Wallet (mobile). None publish a PQC roadmap. Ledger hardware integration inherits Ledger's general PQ research stance, no NEAR-specific PQ deliverable.

Top-3: Rainbow Bridge (NEAR ↔ Ethereum, optimistic Ed25519 verification on Ethereum), Omni Bridge (NEAR's chain-abstraction bridge built on Chain Signatures MPC), LayerZero (third-party general-purpose). None publish a PQC roadmap. Rainbow Bridge's planned upgrade to zk-SNARK Ed25519 verification (Electron Labs grant) does not change the underlying signature primitive, it makes classical Ed25519 cheaper to verify, not PQ-safe.

Top-3 (NEAR-supporting institutional): Coinbase Custody, BitGo, Fireblocks. None publish a NEAR-specific PQC roadmap. Generic vendor-level MPC-PQ research at Fireblocks / Coinbase is non-deliverable for NEAR custody specifically.

RPC: foundation-operated near.org and pagoda.co endpoints deprecated; production traffic concentrated on FastNEAR, QuickNode, Ankr (no published PQC roadmap). HSM: validator key custody varies by node operator, no foundation-mandated HSM with PQ support. TEE: no protocol-level TEE attestation chain.

Nakamoto coefficient reported by Chainspect at audit cutoff: 9 (9 validators required to control ≥33% of stake), with ~401 validators total and ~$742M total stake. Single-client implementation (nearcore), no published second-client validator share.

NEAR Foundation coordinates network-wide upgrades on a multi-month cadence; Nightshade rollouts and stateless-validation work shipped without contested forks. No demonstrated under-adversary upgrade.

NEAR Foundation (Switzerland) is the public coordination entity; mandate is published on near.foundation. There is no named PQ-specific coordination lead, working group, or pq.near.org-style portal at the audit cutoff (compare: pq.ethereum.org exists for Ethereum).

NEAR has not faced a live cryptographic-break adversarial scenario; no precedent for crisis-coordination on a crypto change. Foundation-coordinated upgrades have proceeded under business-as-usual conditions.

No published community honeypot, no rate-limited spending rule, no cryptographic tripwire embedded in consensus, no automated PQ-incident response.