A Taxonomy-Driven Cryptographic Dependency Inventory for Post-Quantum Migration in Decentralized Systems: Triage Rules and a Worked Example

Euimin Lee; Hyeonseong Jung; Yunah Choi; Junyong Lee; Jeihee Cho; Seokhyeon Son; Shiho Kim

A Taxonomy-Driven Cryptographic Dependency Inventory for Post-Quantum Migration in Decentralized Systems: Triage Rules and a Worked Example

Euimin Lee, Hyeonseong Jung, Yunah Choi, Junyong Lee, Jeihee Cho, Seokhyeon Son, Shiho Kim

Published: 06 Apr 2026, Last Modified: 06 Apr 2026ZABAPAD 2026 PosterEveryoneRevisionsCC BY 4.0

Keywords: post-quantum cryptography, PQC migration, decentralized systems, blockchain, cryptographic inventory

Abstract: Quantum-capable adversaries threaten public-key cryptography based on factoring and discrete logarithms, motivating a transition to PQC standards [4– 7]. Migration guidance in standards commu- nities emphasizes that the first step is identifying and documenting cryptographic assets and dependencies (i.e., an inventory) [3 ]. Re- cent government guidance also highlights automated discovery and inventory as a practical prerequisite for migration planning [1]. Decentralized systems amplify migration complexity: (i) protocol upgrades often require multi-party coordination and governance, (ii) verification cost is monetized (e.g., on-chain signature/proof verification), (iii) interoperability is multi-sided (wallets, nodes, bridges, verifiers), and (iv) public artifacts (transactions, signatures, proofs, parameters) are typically long-lived and widely replicated. These properties call for a migration framework that is explicit about upgrade path, interop constraints, and cost drivers—not just cryptographic primitives.

Email Sharing: We authorize the sharing of all author emails with Program Chairs.

Data Release: We authorize the release of our submission and author names to the public in the event of acceptance.

Submission Number: 13

Loading