API Overview
The QuantumSafe REST API provides programmatic access to PQC key generation, hybrid signing, verification, and wallet scanning.
Base URL
| Environment | Base URL |
|---|
| Mainnet | https://api.quantumsafe.io/v1 |
| Testnet | https://api.testnet.quantumsafe.io/v1 |
/v1.
Versioning
The /v1/ path prefix represents the schema version of the API, not the product version. This means:
/v1/ endpoints maintain backward-compatible request/response schemas- New fields may be added to responses (additive changes) without a version bump
- Breaking changes (removed fields, changed types) will result in
/v2/
- Product features (e.g., Managed Custody in v1.5) are released within the
/v1/ schema
You do not need to update your API version when QuantumSafe releases new product versions. The /v1/ schema is stable.
Authentication
All requests must include your API key in the Authorization header:
Authorization: Bearer qs_sec_live_your_key_here
- Content type:
application/json
- All request bodies are JSON
- All hex values should be
0x-prefixed or raw hex strings
curl -X POST https://api.quantumsafe.io/v1/keys/generate \
-H "Authorization: Bearer qs_sec_live_your_key_here" \
-H "Content-Type: application/json" \
-d '{
"algorithm": "ml-dsa-65",
"chain": "ethereum",
"format": "hex"
}'
{
"data": {
"id": "key_abc123",
"algorithm": "ml-dsa-65",
"publicKey": "0x..."
},
"meta": {
"requestId": "req_xyz789",
"timestamp": "2026-01-15T10:30:00Z"
}
}
{
"error": {
"code": "AUTH_001",
"message": "API key is missing or malformed",
"details": {}
},
"meta": {
"requestId": "req_xyz789",
"timestamp": "2026-01-15T10:30:00Z"
}
}
Endpoints Summary
| Method | Endpoint | Description | Key Type |
|---|
| POST | /v1/auth/register | Register a new account | None |
| POST | /v1/auth/login | Authenticate and get token | None |
| POST | /v1/auth/api-keys | Create a new API key | Secret |
| GET | /v1/auth/api-keys | List API keys | Secret |
| DELETE | /v1/auth/api-keys/{id} | Delete an API key | Secret |
| POST | /v1/keys/generate | Generate a PQC key pair | Secret |
| POST | /v1/verify | Verify an attestation | Secret |
| POST | /v1/sign/hybrid | Create hybrid attestation | Secret |
| POST | /v1/scan/wallet | Scan wallet for quantum risk | Publishable or Secret |
