Per Evgeny on #simplex

Signal adopting highly controversial Kyber without making DR pq-resistant is a similar story: protecting some part of the system, without protecting the whole system, and failing to be explicit about it. See https://signal.org/blog/pqxdh/ - while it's not incorrect, strictly speaking, it creates the impression that DR is now PQ secure, without it being achieved. On PQ-resistance, we are reviewing our options, and Streamlined NTRU-Prime 761 seems the most promising candidate at this point, and it's "relatively simple" to make DR PQ resistant: https://github.com/simplex-chat/simplex-chat/blob/ep/pqdr/docs/rfcs/2023-09-30-pq-double-ratchet.md