Abstract: A method for forward security Quantum Secure Layer (QSL), where the method causing a server to hold long-term public/private Key Encapsulation Mechanism (KEM) keypair; uses KEM to establish a pre-master shared secret; causing the server to send ephemeral KEM public key to the client; uses KEM to establish master shared secret; and generates a session key by the server and encrypted to the client using the master shared secret. A method for forward secrecy Quantum Secure Layer (QSL), where the method causing a server to hold a pre-shared ephemeral public/private Key Encapsulation Mechanism (KEM) keypair; uses KEM to establish a master shared secret; and generates a session key by the server and encrypted to the client using the master shared secret.

Abstract: Systems and methods for handshaking, without a certificate authority, to provide at least post-quantum communications security over a computer network. The method generates an authentication tag, hashing, by an initiator, a concatenation of unique identifiers of the initiator and a recipient. The method also generates an encrypted text, symmetrically encrypting, by the initiator that is configured to use a shared secret, a concatenation of the authentication tag and the unique identifiers of the initiator and the recipient. The method further includes sending the encrypted text from the initiator to a server. The method also includes symmetrically decrypting, by the server that is configured to use the shared secret, the encrypted text. The method further includes authenticating, by the server, the encrypted text. The method also includes generating a session key and providing the session key from the server to the initiator.