A new one Ethereum research The proposal puts post-quantum wallet security back in focus, outlining a practical way to verify quantum-resistant signatures on the EVM without requiring a full protocol-level upgrade.
The proposal, published by Ethereum researcher nicocsgy, explores an EVM-optimized version of the SPHINCS+ stateless post-quantum signature scheme. The design aims to make quantum-resistant verification more practical for wallet use cases by adapting the scheme to Ethereum’s existing execution environment.
TL; DR
- A proposal from Ethereum Research outlines a post-quantum signature verification approach for the EVM.
- The design is based on SPHINCS+ but optimized for Ethereum-style execution.
- The proposal uses KECCAK256 instead of SHAKE256 to better match EVM costs.
- It could provide wallets and smart accounts with a practical migration path before quantum threats become urgent.
Why Quantum Security is back in the Ethereum conversation
Quantum computing doesn’t pose an immediate threat to Ethereum wallets today, but developers are already thinking about what a migration path could look like if cryptographic assumptions change.
Most blockchain wallets rely on public key cryptography. If future quantum computers become powerful enough to break common signature systems, wallets and protocols will need alternative methods to securely prove ownership.
That doesn’t mean Ethereum is facing a short-term crisis. It means the ecosystem needs credible upgrade paths before the risk becomes urgent.
Ethereum Research’s proposal is interesting because it does not wait for a complete redesign of the base layer. Instead, it looks at whether post-quantum signature verification can be made practical within the EVM itself.
How the SPHINCS-based design works
SPHINCS+ is a stateless post-quantum signature scheme standardized by NIST. The challenge is that post-quantum signatures can be large and expensive to verify on-chain, especially if the underlying design doesn’t neatly fit Ethereum’s cost model.
The proposal adapts the idea by replacing the standard SHAKE256 hash function with KECCAK256, which is native to the EVM. That’s important because Ethereum already efficiently supports KECCAK256, making it a more practical building block for on-chain verification.
The author also focuses the design on typical wallet behavior rather than trying to cover every theoretical use case. That consideration is important. If the goal is to provide users with a realistic path to protecting funds, the solution must be affordable enough to use, not just academically sound.
The report estimates the verification at approximately 127,000 to 150,000 gas. That’s still more expensive than a normal signature verification flow, but it’s low enough to be considered practical for high-end wallet protection and smart account designs.
What this could mean for portfolios
The most useful part of the proposal is the idea of an upgrade-free path. If smart accounts or wallet contracts can verify post-quantum signatures at the application layer, users may not have to wait for Ethereum itself to change its signature system.
This can be important for long-term holders, custodians and institutions. These users are less concerned with making each transaction as cheap as possible and more concerned with ensuring that large balances can be protected over a long time horizon.
A practical route could be smart accounts that support quantum-proof recovery, migration or spending conditions. Users could move funds to wallets that are harder to attack under future cryptographic assumptions as the broader Ethereum protocol continues to evolve.
Still early, but worth watching
This is still research, not a completed wallet standard. There are tradeoffs around signature size, gas costs, implementation complexity, and user experience. Any production version would have to be seriously revised before large quantities depended on it.
Yet the direction is important. Crypto security can’t wait until quantum computers are powerful enough to create an emergency. It is safer to test practical migration tools early, while there is still time to evaluate them calmly.
For Ethereum, post-quantum readiness will likely be a gradual process. Proposals like these show how the first steps can happen at the wallet and smart account layer, rather than through one dramatic network-wide switch.