Skip to main content

Ethereum Researchers Propose SPHINCS- Signature Scheme For Post-Quantum Wallets

TL;DR

  • An Ethereum Research post proposes SPHINCS-, a stateless post-quantum signature verification scheme optimized for the EVM.
  • The design replaces standard SHAKE256 functions with EVM-native KECCAK256, allowing a Solidity implementation without protocol changes or precompiles.
  • The C13 variant is described as verifying at about 127,000 gas with a 3,704-byte signature.
  • The proposal is non-standard and research-stage, but it adds to Ethereum’s growing post-quantum security conversation.

Ethereum researchers are exploring a new post-quantum signature design that could allow wallets to verify quantum-resistant signatures directly on the Ethereum Virtual Machine without requiring protocol changes.

The proposal, published on Ethereum Research on June 12, introduces SPHINCS-, pronounced as “SPHINCS minus,” as an efficient stateless post-quantum signature verification scheme designed for EVM compatibility. The post credits nicocsgy as author and includes special thanks to Vitalik Buterin and other contributors.

Post-Quantum Signatures For Ethereum Wallets

The basic problem is that today’s blockchain wallets rely on cryptographic assumptions that could eventually be weakened by sufficiently powerful quantum computers. That threat is not immediate, but Ethereum researchers and cryptographers are increasingly discussing how accounts could migrate to quantum-resistant signature schemes over time.

SPHINCS- is designed around a practical constraint: it should work inside the EVM as it exists today. Instead of requiring new precompiles or protocol-level changes, the proposal replaces standard SLH-DSA hash functions such as SHAKE256 with KECCAK256, which is native to Ethereum.

That design choice allows the verification logic to be implemented in Solidity. In other words, the proposal is not asking Ethereum to change its base protocol immediately. It is exploring how far post-quantum wallet verification can be pushed using existing EVM tools.

Lower Signature Budget, Lower Costs

The post also scales down the signature budget to a range more relevant for blockchain wallets. Instead of targeting the standard 2^64 signatures per key, SPHINCS- focuses on a budget between 2^14 and 2^20 signatures per key.

The argument is that normal Ethereum addresses do not need an astronomical number of signatures. The post says the average annual 99.9th percentile of Ethereum transactions is around 431 per address since the Merge, which suggests wallet-specific parameters can be more efficient than broad general-purpose standards.

For its C13 variant, the proposal reports verification costs of about 127,000 gas and a signature size of 3,704 bytes. It compares that with standard SLH-DSA-SHA2-128-24, which the post says costs 142,000 gas with a 3,856-byte signature and requires about 1.07 billion hash calls for signing.

Still Research, Not A Standard

The proposal is careful to note trade-offs. SPHINCS- is non-standard and does not strictly match FIPS 205 parameters because it uses Keccak and limited signing budgets. That means it should be treated as research rather than a finished Ethereum account standard.

There are also practical wallet constraints. The post says C11 and C12 variants are compatible with hardware wallets, but signing times on an ST33K1M5 secure element are listed at 390 seconds and 47.5 seconds respectively. That highlights the gap between theoretical verification efficiency and real user experience.

Even so, the direction is important. Ethereum’s long-term account security will likely require multiple approaches, including new signature schemes, account abstraction tools, migration paths and better wallet UX.

Why It Matters

Post-quantum security is still a future-facing issue, but blockchain networks cannot wait until quantum attacks are practical before thinking about migration. Wallet upgrades, standards, user education and ecosystem coordination can take years.

SPHINCS- does not solve that entire problem. But it gives Ethereum researchers another concrete design to test: a stateless, EVM-native, post-quantum verification path that may work without waiting for base-layer changes.



from Bitcoinist.com https://ift.tt/uNXgDrz
Labels:

Comments

Post a Comment

Popular posts from this blog

Slow And Steady Wins? Bitcoin To Hit $1M Via ‘Pump’ And ‘Consolidate’ Pattern: Expert

The bull cycle was deemed over when the price of Bitcoin tragically fell toward $75,000 earlier in March 2025. Having notched an all-time high of above $100,000, most investors feared that the premier cryptocurrency had already reached its top for the current cycle. Contrary to popular belief, the price of Bitcoin has since forged multiple new all-time highs, with the current record high at around $122,800. Interestingly, the now-popular market consensus is that it is only a matter of time before the BTC price reaches a seven-figure valuation. How Will Bitcoin Hit $1 Million In 10 Years? In a recent post on the X platform, Blockware Bitcoin analyst Mitchell Askew has joined a growing list of experts to put forward a $1 million projection for the premier cryptocurrency. According to the analyst, the price of BTC is expected to achieve this major milestone over the next 10 years. What’s interesting is that Askew expects the Bitcoin price to reach a $1 million valuation in the next ...
Post a Comment
Read more

Sam Bankman-Fried’s Cellmate Says He Never Owned Up — And That’s Why A Pardon Won’t Come

Sam Bankman-Fried says he would “absolutely” welcome a pardon from US President Donald Trump. Trump, for his part, has already said no. Cellmate Speaks Up Michael Avenatti, who shared a prison unit with the former FTX chief, went further than Trump’s January dismissal. In a series of posts on X, Avenatti said SBF never once admitted any wrongdoing during their time together — not privately, not in passing, not ever. “Not once did he admit he’d done anything wrong,” Avenatti wrote, adding that redemption begins with accepting responsibility. Without that, he argued, a pardon request carries no real weight. Avenatti is no neutral observer. He is himself a convicted felon, currently incarcerated for extortion and fraud. His criticism of SBF’s character comes from someone with his own considerable legal baggage. Sam Bankman-Fried and I were prison bunkmates and I know him well. So I read this with more context than most. Sam and I argued ...
Post a Comment
Read more

Bitcoin Remains Range-Bound As Volatility Declines – Analyst Explains Price Action

Bitcoin has experienced frustrating price action in recent weeks, leaving investors impatient about its short-term direction. The price has been testing crucial supply levels between $98K and $100K, struggling to break out as uncertainty dominates the market. The lack of a clear move has led to speculation about whether BTC is preparing for a breakout or another correction. Adding to the uncertainty, the market was hit by negative news on Friday when crypto exchange Bybit was hacked, resulting in the theft of $1.4 billion in ETH. The incident caused fear and volatility, briefly dragging prices lower. However, Bybit responded quickly to reassure investors, easing some of the initial panic and stabilizing the market. Despite this, Bitcoin continues to consolidate in a tight range. Crypto expert Daan shared an analysis on X, noting that BTC is still ranging while volatility is steadily decreasing. As price compression increases, traders are on high alert for a potential explosive move....
Post a Comment
Read more