Ethereum Researchers Propose SPHINCS- Signature Scheme For Post-Quantum Wallets

bitcoinistОпубликовано 2026-06-13Обновлено 2026-06-13

Введение

Ethereum researchers have proposed SPHINCS-, a stateless post-quantum signature verification scheme optimized for the Ethereum Virtual Machine (EVM). Designed to function within the existing EVM without protocol changes or new precompiles, it replaces standard hash functions with EVM-native KECCAK256, enabling a Solidity implementation. The scheme is tailored for wallet use, targeting a more practical signature budget (2^14 to 2^20 signatures per key) rather than the standard astronomical limit, reflecting typical Ethereum address transaction patterns. A key variant, C13, is reported to verify signatures at about 127,000 gas with a 3,704-byte signature. The proposal, credited to researcher nicocsgy with acknowledgments to Vitalik Buterin, is currently a non-standard research concept, not a finished standard. It highlights trade-offs, such as long signing times on certain hardware wallets, but contributes to the broader, essential conversation on preparing Ethereum's account security for a future with quantum computers.

TL;DR

  • An Ethereum Research post proposes SPHINCS-, a stateless post-quantum signature verification scheme optimized for the EVM.
  • The design replaces standard SHAKE256 functions with EVM-native KECCAK256, allowing a Solidity implementation without protocol changes or precompiles.
  • The C13 variant is described as verifying at about 127,000 gas with a 3,704-byte signature.
  • The proposal is non-standard and research-stage, but it adds to Ethereum’s growing post-quantum security conversation.

Ethereum researchers are exploring a new post-quantum signature design that could allow wallets to verify quantum-resistant signatures directly on the Ethereum Virtual Machine without requiring protocol changes.

The proposal, published on Ethereum Research on June 12, introduces SPHINCS-, pronounced as “SPHINCS minus,” as an efficient stateless post-quantum signature verification scheme designed for EVM compatibility. The post credits nicocsgy as author and includes special thanks to Vitalik Buterin and other contributors.

Post-Quantum Signatures For Ethereum Wallets

The basic problem is that today’s blockchain wallets rely on cryptographic assumptions that could eventually be weakened by sufficiently powerful quantum computers. That threat is not immediate, but Ethereum researchers and cryptographers are increasingly discussing how accounts could migrate to quantum-resistant signature schemes over time.

SPHINCS- is designed around a practical constraint: it should work inside the EVM as it exists today. Instead of requiring new precompiles or protocol-level changes, the proposal replaces standard SLH-DSA hash functions such as SHAKE256 with KECCAK256, which is native to Ethereum.

That design choice allows the verification logic to be implemented in Solidity. In other words, the proposal is not asking Ethereum to change its base protocol immediately. It is exploring how far post-quantum wallet verification can be pushed using existing EVM tools.

Lower Signature Budget, Lower Costs

The post also scales down the signature budget to a range more relevant for blockchain wallets. Instead of targeting the standard 2^64 signatures per key, SPHINCS- focuses on a budget between 2^14 and 2^20 signatures per key.

The argument is that normal Ethereum addresses do not need an astronomical number of signatures. The post says the average annual 99.9th percentile of Ethereum transactions is around 431 per address since the Merge, which suggests wallet-specific parameters can be more efficient than broad general-purpose standards.

For its C13 variant, the proposal reports verification costs of about 127,000 gas and a signature size of 3,704 bytes. It compares that with standard SLH-DSA-SHA2-128-24, which the post says costs 142,000 gas with a 3,856-byte signature and requires about 1.07 billion hash calls for signing.

Still Research, Not A Standard

The proposal is careful to note trade-offs. SPHINCS- is non-standard and does not strictly match FIPS 205 parameters because it uses Keccak and limited signing budgets. That means it should be treated as research rather than a finished Ethereum account standard.

There are also practical wallet constraints. The post says C11 and C12 variants are compatible with hardware wallets, but signing times on an ST33K1M5 secure element are listed at 390 seconds and 47.5 seconds respectively. That highlights the gap between theoretical verification efficiency and real user experience.

Even so, the direction is important. Ethereum’s long-term account security will likely require multiple approaches, including new signature schemes, account abstraction tools, migration paths and better wallet UX.

Why It Matters

Post-quantum security is still a future-facing issue, but blockchain networks cannot wait until quantum attacks are practical before thinking about migration. Wallet upgrades, standards, user education and ecosystem coordination can take years.

SPHINCS- does not solve that entire problem. But it gives Ethereum researchers another concrete design to test: a stateless, EVM-native, post-quantum verification path that may work without waiting for base-layer changes.

Связанные с этим вопросы

QWhat is SPHINCS- and what is its main purpose as proposed for Ethereum?

ASPHINCS- is a stateless post-quantum signature verification scheme designed to be EVM-compatible, with the main purpose of allowing wallets to verify quantum-resistant signatures directly on the Ethereum Virtual Machine without requiring protocol changes.

QHow does SPHINCS- achieve EVM compatibility without needing protocol changes?

AIt achieves EVM compatibility by replacing standard SLH-DSA hash functions like SHAKE256 with the EVM-native KECCAK256 function, enabling the verification logic to be implemented in Solidity.

QWhat are the reported gas cost and signature size for the C13 variant of SPHINCS-?

AFor the C13 variant, the reported verification cost is about 127,000 gas, and the signature size is 3,704 bytes.

QWhy does the proposal scale down the signature budget for SPHINCS- compared to standard parameters?

AIt scales down the signature budget to a range between 2^14 and 2^20 signatures per key because the average Ethereum address does not need an astronomical number of signatures, and this allows for more wallet-specific efficiency compared to general-purpose standards.

QWhat is the current status of the SPHINCS- proposal, and what are some of its noted limitations?

AThe SPHINCS- proposal is non-standard, research-stage, and not a finished Ethereum account standard. Key limitations include it not strictly matching FIPS 205 parameters and having long signing times on certain hardware wallets (e.g., 390 seconds for C11 on an ST33K1M5 secure element).

Похожее

The Most Advanced Large Models Are Now Subject to Export Controls Like Enriched Uranium

In an unprecedented move mirroring the control of enriched uranium, the US Commerce Department has imposed an export control ban on Anthropic's advanced AI models, Fable 5 and Mythos 5, forcing their global shutdown. This marks the first time a purely digital entity—a set of neural network weights—has been subjected to such hardware-like strategic export restrictions, based not on physical scarcity but on its concentrated "capability density." The article draws a direct parallel to the historical control of nuclear technology, arguing that just as uranium ore becomes a controlled substance only when enriched to a critical threshold, AI capabilities become subject to regulation when compressed into a single, potent, and easily accessible interface. This "enriched AI" is seen as crossing a threshold where its aggregated power poses a potential threat. The author predicts three major consequences over the next decade. First, capability auditing will become institutionalized, with governments setting compliance checklists and thresholds for model power, triggering automatic export controls. Second, jurisdictional boundaries will blur as US export controls extend their reach globally, governing any user of American AI services regardless of location, forcing non-US entities to reconsider their AI supply chain dependencies. Third, a technological bifurcation will occur, splitting the AI landscape into a restricted, high-risk track of advanced US proprietary models and a more reliable track of open-source or locally developed alternatives, where guaranteed access may outweigh raw performance. The core crisis exposed is the lack of a legal property rights framework for AI "intelligence." While companies invest heavily in integrating these models into their production systems, legally they only purchase a service that can be revoked at any time, leaving them with no recourse for their sunk investments. The conclusion warns of a permanently fractured digital world where the most capable models may not be the most usable, and clear, unassailable ownership of technology will become paramount.

marsbit10 мин. назад

The Most Advanced Large Models Are Now Subject to Export Controls Like Enriched Uranium

marsbit10 мин. назад

Bitcoin ETF Sees First Inflow in Three Weeks After Record $4.4 Billion Outflow Streak

US Bitcoin spot ETFs experienced a record-breaking outflow streak, with a net withdrawal of $4.4 billion over 13 consecutive trading days from May 15 to June 3, more than doubling the previous record set in February 2025. This sell-off, led predominantly by BlackRock's IBIT, coincided with a Bitcoin price drop from above $80,000 to around $63,000, reducing total ETF assets under management from $104.3 billion to $82.8 billion. A potential turning point emerged on June 12, when the funds collectively recorded zero net outflows and a net inflow of $85.84 million. Geoff Kendrick of Standard Chartered cited this as one of three signals indicating Bitcoin may have reached a cycle bottom. While the single day's inflow is small relative to the preceding outflows, it marks a crucial shift in momentum. Analysts view the halt in sustained selling pressure as a key indicator, suggesting the recent downturn was a significant correction rather than a structural collapse for the ETF market.

marsbit24 мин. назад

Bitcoin ETF Sees First Inflow in Three Weeks After Record $4.4 Billion Outflow Streak

marsbit24 мин. назад

Microsoft CEO's Lengthy Post: Two Types of Capital in the Future, Human Capital + Token Capital

Microsoft CEO Satya Nadella published a long essay titled "A frontier without an ecosystem is not stable," expressing deep concerns about the future of enterprises in the AI-driven economy. He argues that AI is fundamentally changing competition by enabling models to absorb and commodify human expertise, potentially allowing a few dominant AI systems to capture disproportionate economic value. To counter this, Nadella introduces the concepts of "Human Capital" (employee knowledge, judgment, creativity) and "Token Capital" (proprietary AI capabilities). He emphasizes that these two forms of capital must create a compounding "learning loop" within organizations, where human guidance drives AI improvement and accumulated institutional knowledge becomes a key competitive advantage. Nadella warns against a future where industries are hollowed out by a few AI models, similar to past outsourcing waves. Instead, he calls for building a diverse AI ecosystem where every company can innovate, retain control over its intellectual property, and ensure value flows broadly across the economy.

marsbit38 мин. назад

Microsoft CEO's Lengthy Post: Two Types of Capital in the Future, Human Capital + Token Capital

marsbit38 мин. назад

From a $300 Million Valuation to a 'Fire Sale' at Tens of Millions: What Happened to Messari?

On June 12, leading crypto data and capital markets platform Blockworks announced its acquisition of competitor Messari for over $10 million. This price represents a significant discount from Messari's 2022 valuation peak of approximately $300 million, highlighting the survival pressures faced by high-valuation startups during the bear market and a consolidation wave in data infrastructure. Blockworks, founded in 2018, began as a media and events company but has pivoted to focus on institutional-grade data, investor relations, and compliance tools. Its recent Series A extension round, valuing the company at $192 million, aimed to fund this shift and strategic acquisitions like this one. Messari, also founded in 2018, grew as a go-to platform for professional crypto research and data, raising a $35 million Series B at its $300 million valuation in late 2022. However, the prolonged bear market and subsequent internal changes, including founder Ryan Selkis's departure in 2024, increased operational pressures. The acquisition integrates Messari's extensive data platform and API capabilities with Blockworks's strengths in issuer-side disclosure, investor relations, and compliance workflows. The combined entity aims to build a unified "system of record" for the on-chain market. This reflects a broader industry trend where high-quality, structured data is becoming critical for institutional adoption, AI agents, and creating data moats akin to traditional financial platforms like Bloomberg. The deal exemplifies how market consolidation is reshaping the fragmented crypto data landscape.

marsbit38 мин. назад

From a $300 Million Valuation to a 'Fire Sale' at Tens of Millions: What Happened to Messari?

marsbit38 мин. назад

If the AI Bubble Is Already Bursting, Who Will Truly Survive?

If the AI Bubble is Bursting, Who Will Remain? The debate over an AI bubble is intensifying, with figures like Ray Dalio warning of high levels and Jensen Huang seeing immense, early-stage opportunity. Both views hold truth: a speculative bubble in capital markets likely exists, mirroring the dot-com era, but the underlying technological shift is real and transformative. History shows that while bubbles burst—wiping out overvalued companies and speculative capital—they often leave behind critical physical and digital infrastructure. The dot-com bust, for instance, eliminated many firms but left the global fiber optic networks and data centers that enabled the rise of Amazon, Netflix, and cloud computing. Today's massive AI infrastructure investments (projected at trillions by 2030) in data centers, power, cooling, and GPUs may follow a similar path, creating the foundation for future applications. A key divergence from past bubbles is the "Jevons Paradox" effect in AI. As the cost of AI inference has plummeted by over 99.7% since 2023, enterprise spending on AI has skyrocketed. Cheap "tokens" have unlocked vast, previously uneconomical use cases, moving AI from simple chatbots into core business workflows—code generation, legal document review, scientific simulation, and financial analysis. The market is now in a phase of self-correction, weeding out superficial "API-wrapper" startups, but this cleansing process strengthens the ecosystem. The long-term trajectory is clear. The value is gradually shifting from capital expenditure (CapEx) on hardware to operational expenditure (OpEx) on transformative applications. As AI becomes a utility, the winners will be firms that deeply integrate it to solve vertical industry problems in law, healthcare, finance, and manufacturing. The泡沫 will recede, but the foundational shift towards an AI-powered era across all sectors is irreversible. The underlying productive force of AI contains no bubble.

marsbit1 ч. назад

If the AI Bubble Is Already Bursting, Who Will Truly Survive?

marsbit1 ч. назад

Торговля

Спот
Фьючерсы

Популярные статьи

Manyu: восходящая мем-звезда на Ethereum, готовая открыть новую эру культуры Shiba

Manyu - это мемтокен на Ethereum, который приносит децентрализованную культурную и развлекательную ценность через вирусное влияние в соцсетях и вовлечённость сообщества.

2.0k просмотров всегоОпубликовано 2025.11.27Обновлено 2025.11.27

Manyu: восходящая мем-звезда на Ethereum, готовая открыть новую эру культуры Shiba

Неделя обучения по популярным токенам 14: Glamsterdam — самое ожидаемое обновление Ethereum в 2026 году

Ordinals/Runes по-прежнему стимулируют доходы от комиссий за блоки и активность разработчиков, рассматриваются как отправная точка «нативной эмиссии активов» в сети.

1.5k просмотров всегоОпубликовано 2026.04.29Обновлено 2026.04.29

Неделя обучения по популярным токенам 14: Glamsterdam — самое ожидаемое обновление Ethereum в 2026 году

Обсуждения

Добро пожаловать в Сообщество HTX. Здесь вы сможете быть в курсе последних новостей о развитии платформы и получить доступ к профессиональной аналитической информации о рынке. Мнения пользователей о цене на ETH (ETH) представлены ниже.

活动图片

Топ вопросы

Популярные категорииright-arrow

Популярные тегиright-arrow