cipherwake.io is the public-facing scanner that measures harvest-now-decrypt-later exposure. Behind it, we're building Tessera — a patented post-quantum handshake protocol designed for the byte-constrained channels that NIST's ML-KEM (768–1568 bytes per exchange) physically can't fit.
The protocols below all have wire-format constraints that block ML-KEM from being practical. Tessera is engineered to deliver PQ-grade key agreement inside those budgets without redesigning the underlying transport. Patent-protected; SDK in active development; public launch is post-MVP — once pqcheck has demonstrated the demand for harvest-now risk measurement, the SDK becomes the natural remediation layer.
The HNDL scanner answers "how exposed is this domain?" Tessera answers "what do we do about it on a channel that can't fit ML-KEM?" The first is a measurement; the second is a deployment. They share a worldview but serve different buyers — measurement is engineering-facing and free; remediation is firmware-facing and license-only.
The SDK is not yet generally available. If you're operating a constrained-channel deployment (BLE, NFC, LoRaWAN, V2X, EMV, embedded medical) and want to discuss timing or design-partner access, reach out at tessera@cipherwake.io.
Or scan a domain — the public scanner is free, no signup. cipherwake.io