3 Minutes
Buterin lays out a four-part quantum resistance plan for Ethereum
Ethereum co-founder Vitalik Buterin has published a targeted roadmap to prepare Ethereum for the risks posed by future quantum computers. With quantum-capable processors increasingly discussed in crypto circles, Buterin identified four core areas that require upgrades to ensure the network remains secure: validator consensus signatures, onchain data storage, user account signatures, and zero-knowledge proof systems.
1. Validator signatures: moving beyond BLS
Buterin recommends replacing the current BLS consensus signatures with lean, hash-based quantum-safe signatures. Hash-based schemes are well-studied for post-quantum security, but one major challenge is choosing the hash function carefully. As Buterin warned, this selection could be effectively "Ethereum's last hash function", making forward-thinking design and wide review essential. Transitioning signatures will be key to maintaining validator security and consensus integrity against quantum attacks.
2. Data storage: KZG to STARKs
Ethereum today relies on KZG commitments for blob storage and verification. Buterin proposes migrating to STARKs, which provide zero-knowledge proofs that are more resilient to quantum threats. Implementing STARK-based storage and verification will require substantial engineering effort, but it is feasible and would raise the long-term quantum safety of onchain data availability and blob verification.
3. Accounts and user signatures: support for quantum-safe schemes
User accounts currently depend on ECDSA keys, which could be vulnerable to future quantum adversaries. The proposed solution is to make accounts flexible so they can accept any signature scheme, including lattice-based and other post-quantum options. A near-term trade-off is increased computational cost and higher gas consumption for quantum-safe signatures. Buterin argues that protocol-level techniques like recursive signature and proof aggregation can dramatically reduce that overhead over time.
Buterin floated the concept of a recursive-STARK-based bandwidth-efficient mempool in January.
4. Zero-knowledge proofs: recursive aggregation to control cost
Quantum-resistant proofs such as STARK proofs tend to be large and costly to verify onchain. The roadmap emphasizes recursive aggregation, where many signatures and proofs are compressed into a single master proof or validation frame. This approach can validate thousands of individual proofs offchain and submit a compact aggregate onchain, keeping verification costs low and preserving network throughput.
Practical implications and next steps
Buterin also referenced community proposals like Lean Ethereum and highlighted the Ethereum Foundation Strawmap vision for continued reductions in slot time and finality time. The proposed changes will involve protocol upgrades, extensive engineering, and community coordination. For developers and validators, early research and testing on hash selection, STARK integration, account abstraction for multiple signature schemes, and recursive aggregation primitives will be crucial.
Source: cointelegraph
Leave a Comment