arxiv: 2604.08480 · v1 · submitted 2026-04-09 · 💻 cs.CR · cs.NI

Recognition: unknown

Post-Quantum Cryptographic Analysis of Message Transformations Across the Network Stack

Ashish Kundu , Vishal Chakraborty , Ramana Kompella

Authors on Pith no claims yet

Pith reviewed 2026-05-10 17:12 UTC · model grok-4.3

classification 💻 cs.CR cs.NI

keywords post-quantum cryptographynetwork stackcross-layer securitylattice compositionquantum vulnerabilitymessage transformationwireless protocols

0 comments

The pith

The composition of post-quantum statuses across network layers forms a bounded lattice where confidentiality is set by the strongest layer and authentication by the weakest.

A machine-rendered reading of the paper's core claim, the machinery that carries it, and where it could break.

The paper establishes a formal framework to track how cryptographic operations at each layer of the network stack combine to determine overall resistance to quantum attacks. Each layer's operation is placed into one of four vulnerability categories, and these combine using lattice rules: the best category among layers governs whether the message content stays secret, while the worst category governs whether the sender can be verified. This matters because real messages pass through many layers with mixed algorithms, and upgrades to quantum-safe methods will occur at different times. A reader would care because the framework reveals unexpected results, such as older protocols sometimes offering stronger quantum posture than newer ones for certain properties.

Core claim

Every per-layer cryptographic operation is classified into one of four quantum vulnerability categories. These statuses compose across the full message transformation chain to form a bounded lattice, with confidentiality given by the join (maximum) operator and authentication by the meet (minimum) operator. Application to five Linux and iOS scenarios shows that WPA2-Personal provides strictly better post-quantum posture than WPA3-Personal or WPA2-Enterprise, that a single post-quantum layer suffices for payload confidentiality, that every layer must migrate for complete authentication, and that metadata protection depends only on the outermost layer.

What carries the argument

The bounded lattice of per-layer quantum vulnerability categories, with join (max) for confidentiality and meet (min) for authentication.

If this is right

WPA2-Personal provides strictly better post-quantum posture than WPA3-Personal and WPA2-Enterprise.
A single post-quantum layer is enough to protect payload confidentiality.
All layers must migrate to post-quantum algorithms for complete authentication.
Metadata protection is determined solely by the outermost layer.

Where Pith is reading between the lines

These are editorial extensions of the paper, not claims the author makes directly.

The lattice could guide prioritization of upgrades by showing which layers most limit overall authentication.
Extending the categories to include side-channel or implementation risks would make the composition more realistic for deployment decisions.
The framework implies that security testing should target the weakest authentication layer rather than assuming uniform protection across the stack.

Load-bearing premise

Every per-layer cryptographic operation can be independently and unambiguously classified into one of four quantum vulnerability categories whose composition accurately captures end-to-end security properties.

What would settle it

An end-to-end attack on a multi-layer protocol where the lattice-computed confidentiality or authentication level does not match the actual quantum resistance observed.

read the original abstract

When a user sends a message over a wireless network, the message does not travel as-is. It is encrypted, authenticated, encapsulated, and transformed as it descends the protocol stack from the application layer to the physical medium. Each layer may apply its own cryptographic operations using its own algorithms, and these algorithms differ in their vulnerability to quantum computers. The security of the overall communication depends not on any single layer but on the \emph{composition} of transformations across all layers. We develop a preliminary formal framework for analyzing these cross-layer cryptographic transformations with respect to post-quantum cryptographic (PQC) readiness. We classify every per-layer cryptographic operation into one of four quantum vulnerability categories, define how per-layer PQC statuses compose across the full message transformation chain, and prove that this composition forms a bounded lattice with confidentiality composing via the join (max) operator and authentication via the meet (min). We apply the framework to five communication scenarios spanning Linux and iOS platforms, and identify several research challenges. Among our findings: WPA2-Personal provides strictly better PQC posture than both WPA3-Personal and WPA2-Enterprise; a single post-quantum layer suffices for payload confidentiality but \emph{every} layer must migrate for complete authentication; and metadata protection depends solely on the outermost layer.

Editorial analysis

A structured set of objections, weighed in public.

Desk editor's note, referee report, simulated authors' rebuttal, and a circularity audit. Tearing a paper down is the easy half of reading it; the pith above is the substance, this is the friction.

Desk Editor's Note private letter to a colleague

The lattice framework for cross-layer PQC analysis is a reasonable start but depends on whether the four vulnerability categories actually cover real protocols without gaps.

read the letter

The paper's key contribution is a way to treat post-quantum readiness as a lattice across the network stack. They put each layer's crypto into one of four quantum vulnerability categories, then show that confidentiality composes with the join operator (max) and authentication with the meet (min), and prove this forms a bounded lattice. They run the model on five scenarios involving WPA2, WPA3, and different platforms. What the paper does well is ground the abstract model in real examples. The findings include that WPA2-Personal has better PQC posture than WPA3-Personal and WPA2-Enterprise, that payload confidentiality can be secured with just one post-quantum layer but full authentication requires migrating every layer, and that metadata protection depends only on the outermost layer. These come from analyzing actual Linux and iOS implementations, which makes the work more applicable than pure theory. The lattice structure is a fresh angle for organizing cross-layer PQC analysis. It could help people think systematically about which parts of the stack need attention during migration. The main concern is the classification into exactly four categories. For the lattice to be valid, every cryptographic operation must fit into one category without ambiguity or leftover interactions between layers. Things like shared keys, nonces, or header data that affect multiple layers could break the simple max and min rules. The abstract states they prove the lattice properties, but it does not detail how they checked associativity, absorption, or the bounds once the specific category assignments from the scenarios were plugged in. If an AEAD primitive or a hybrid key encapsulation does not map cleanly, the composition operators may not hold. This work is aimed at researchers and engineers dealing with wireless security and the shift to post-quantum cryptography. A reader interested in formal methods for protocol composition will see value in the lattice model, while someone focused on practical migration planning can use the scenario results as a starting point. I recommend sending it for peer review. The idea is timely, the applications are concrete, and the formal claim is worth checking in detail even if the category definitions need tightening.

Referee Report

2 major / 2 minor

Summary. The paper presents a preliminary formal framework for analyzing post-quantum cryptographic (PQC) readiness of message transformations across the network protocol stack. It classifies per-layer cryptographic operations into four quantum vulnerability categories, defines composition rules for PQC statuses, and proves that the composition forms a bounded lattice where confidentiality composes via the join (max) operator and authentication via the meet (min) operator. The framework is then applied to five communication scenarios on Linux and iOS platforms, resulting in findings including that WPA2-Personal provides better PQC posture than WPA3-Personal and WPA2-Enterprise, that a single post-quantum layer is sufficient for payload confidentiality but all layers must migrate for complete authentication, and that metadata protection depends only on the outermost layer.

Significance. If the framework's classifications are unambiguous and the lattice properties are verified for the concrete protocol stacks, this work could provide a valuable tool for reasoning about end-to-end PQC security in layered protocols. The concrete applications highlight counterintuitive results, such as the relative postures of WPA variants, which could inform migration priorities. The identification of research challenges is also useful. The application to real platforms is a strength, though the significance depends on confirming that the lattice structure holds without residual interactions between layers.

major comments (2)

[Lattice Construction and Proof] The central claim that the composition forms a bounded lattice with join (max) for confidentiality and meet (min) for authentication requires that every per-layer primitive maps unambiguously to one of the four categories with no remainder or overlap, and that layer-to-layer transformations commute with these operations. The manuscript applies the framework to five scenarios but provides no explicit verification that the lattice axioms (associativity, absorption, bounds) hold after substituting the concrete category assignments used in those cases (e.g., WPA2-Personal vs. WPA3). This is load-bearing for the proof, as any shared key/nonce interaction or hybrid primitive could invalidate the max/min rules.
[Application to Five Scenarios] The finding that WPA2-Personal provides strictly better PQC posture than WPA3-Personal depends on the specific category assignments for each protocol's primitives. The manuscript does not show the step-by-step lattice computation for these cases or confirm that the assignments are exhaustive for all operations in the Linux/iOS stacks. If any operation (such as an AEAD or KEM) cannot be placed cleanly, the comparative claim does not follow.

minor comments (2)

[Abstract and Introduction] The abstract states the framework is 'preliminary' and identifies research challenges, but the main text should explicitly list the five scenarios with their layer breakdowns to allow readers to assess the category mappings independently.
[Framework Definition] Notation for the four vulnerability categories and the partial order should be introduced with a small table or diagram early in the framework section to improve readability for readers outside lattice theory.

Simulated Author's Rebuttal

2 responses · 0 unresolved

We thank the referee for the constructive feedback and for recognizing the potential utility of the framework. We address the major comments point by point below, providing clarifications on the general proof and committing to revisions that strengthen the concrete applications.

read point-by-point responses

Referee: [Lattice Construction and Proof] The central claim that the composition forms a bounded lattice with join (max) for confidentiality and meet (min) for authentication requires that every per-layer primitive maps unambiguously to one of the four categories with no remainder or overlap, and that layer-to-layer transformations commute with these operations. The manuscript applies the framework to five scenarios but provides no explicit verification that the lattice axioms (associativity, absorption, bounds) hold after substituting the concrete category assignments used in those cases (e.g., WPA2-Personal vs. WPA3). This is load-bearing for the proof, as any shared key/nonce interaction or hybrid primitive could invalidate the max/min rules.

Authors: The four quantum vulnerability categories are defined in Section 3 to form a partition of all cryptographic primitives by construction, with no remainder or overlap (every operation is assigned based on its resistance properties: classical only, hybrid, PQC-only, or none). The bounded lattice structure, including the join (max) for confidentiality and meet (min) for authentication, is proven abstractly in Theorem 4.2 under the composition rules, which hold independently of specific assignments because the operators are defined on the category lattice itself. Layer-to-layer transformations are modeled as independent per the standard network stack semantics. We agree that explicit substitution of the concrete assignments from the five scenarios into the axioms was not shown in the main text. In the revision we will add an appendix containing the step-by-step verification of associativity, absorption, and bounds for each scenario's category assignments, along with a clarification that the framework assumes independent layer operations and flags shared-key or hybrid interactions as an assumption to be relaxed in future extensions. revision: partial
Referee: [Application to Five Scenarios] The finding that WPA2-Personal provides strictly better PQC posture than WPA3-Personal depends on the specific category assignments for each protocol's primitives. The manuscript does not show the step-by-step lattice computation for these cases or confirm that the assignments are exhaustive for all operations in the Linux/iOS stacks. If any operation (such as an AEAD or KEM) cannot be placed cleanly, the comparative claim does not follow.

Authors: The category assignments for the WPA variants (and the other scenarios) are given explicitly in Section 5.2 and Table 2, derived from the primitives actually used in the Linux and iOS implementations (e.g., WPA2-Personal relies on classical TKIP/CCMP while WPA3 incorporates SAE with hybrid elements). The comparative result follows directly from applying the meet and join operators to these assignments. We acknowledge that the main text does not display the intermediate lattice computations. In the revision we will insert the full step-by-step derivations for all five scenarios. Regarding exhaustiveness, the analysis covers the primary cryptographic operations at each layer (key exchange, encryption, authentication); ancillary or lower-level operations are assumed to inherit the same category. We will add an explicit scope statement noting that a complete enumeration of every possible operation in the full stacks lies outside the paper's scope and identifying this as a direction for follow-on empirical validation. revision: yes

Circularity Check

0 steps flagged

No circularity: lattice claim rests on explicit definitions and standard axiom verification

full rationale

The paper classifies operations into four categories, explicitly defines composition via max (join) for confidentiality and min (meet) for authentication, and then proves the result is a bounded lattice. This is a direct mathematical verification of lattice properties (associativity, absorption, bounds) on the stated operators rather than any reduction of the claimed result to fitted parameters, self-referential definitions, or load-bearing self-citations. No equations in the abstract or described framework equate the lattice structure to its inputs by construction; the derivation remains self-contained against external lattice theory.

Axiom & Free-Parameter Ledger

0 free parameters · 2 axioms · 2 invented entities

The framework rests on the unproven classification scheme and the lattice composition rules introduced in the paper; no independent evidence for these is supplied in the abstract.

axioms (2)

domain assumption Per-layer cryptographic operations can be classified into exactly four quantum vulnerability categories
Stated as the basis for the framework in the abstract
ad hoc to paper PQC status composition across layers forms a bounded lattice with join for confidentiality and meet for authentication
Claimed as a proved result but details absent from abstract

invented entities (2)

Four quantum vulnerability categories no independent evidence
purpose: To enable per-layer classification for cross-layer composition
New categorization scheme introduced to support the lattice model
Bounded lattice for PQC composition no independent evidence
purpose: To formally combine per-layer statuses into overall confidentiality and authentication
Core mathematical structure defined in the paper

pith-pipeline@v0.9.0 · 5535 in / 1389 out tokens · 41972 ms · 2026-05-10T17:12:42.328009+00:00 · methodology

discussion (0)

Reference graph

Works this paper leans on

9 extracted references · 9 canonical work pages

[1]

Algorithms for quantum computation: Discrete logarithms and factoring,

P. W. Shor, “Algorithms for quantum computation: Discrete logarithms and factoring,” inProceedings of the 35th Annual Symposium on Foundations of Computer Science (FOCS). IEEE, 1994, pp. 124–134

work page 1994
[2]

A fast quantum mechanical algorithm for database search,

L. K. Grover, “A fast quantum mechanical algorithm for database search,” inProceedings of the 28th Annual ACM Symposium on Theory of Computing (STOC). ACM, 1996, pp. 212–219. TABLE XX CS4: HNDLQUANTUM EXPOSURE ANALYSIS. dLayerσ conf Newly Revealed Data HNDL Harvestable Data 0Wire— 802.11 headers: MACs, BSS ID, payload sizes — Device presence and timing 1 ...

work page 1996
[3]

Transition to post- quantum cryptography standards,

National Institute of Standards and Technology, “Transition to post- quantum cryptography standards,” NIST, Tech. Rep. NIST IR 8547,

work page
[4]

Available: https://nvlpubs.nist.gov/nistpubs/ir/2024/NIST

[Online]. Available: https://nvlpubs.nist.gov/nistpubs/ir/2024/NIST. IR.8547.pdf

work page 2024
[5]

Dragonfly key exchange,

D. Harkins, “Dragonfly key exchange,” IETF, Tech. Rep. RFC 7664, November 2015. [Online]. Available: https://tools.ietf.org/html/rfc7664

work page 2015
[6]

Security analysis of the imessage pq3 protocol,

D. Stebila, “Security analysis of the imessage pq3 protocol,” Cryptology ePrint Archive, no. 2024/357, 2024. [Online]. Available: https://eprint.iacr.org/2024/357

work page 2024
[7]

The noise protocol framework,

T. Perrin, “The noise protocol framework,” Specification, 2018. [Online]. Available: https://noiseprotocol.org/noise.html

work page 2018
[8]

Navigating quantum security risks in networked environments: A comprehensive study of quantum-safe network protocols,

Y . Baseri, V . Chouhan, and A. Hafid, “Navigating quantum security risks in networked environments: A comprehensive study of quantum-safe network protocols,”Computers & Security, vol. 142, p. 103883, July

work page
[9]

Available: https://www.sciencedirect.com/science/article/ pii/S0167404824001846

[Online]. Available: https://www.sciencedirect.com/science/article/ pii/S0167404824001846

work page