Ethereum co-founder Vitalik Buterin has outlined a roadmap aimed at strengthening the network against potential quantum computing threats, identifying four core areas he considers most exposed.

The proposal comes as discussions around quantum-capable computers and blockchain security gain renewed attention, particularly regarding whether existing cryptographic systems could withstand future technological advances.

In a Thursday post, Buterin explained that the focus areas include validator signatures, data storage, user account signatures, and zero-knowledge proofs. He suggested replacing Ethereum’s current BLS (Boneh-Lynn-Shacham) consensus signatures with “Lean” quantum-safe hash-based signatures to improve resilience. A key difficulty lies in selecting the correct hash function, since the decision would likely shape Ethereum’s security model for decades. “This may be ‘Ethereum’s last hash function,’ so it’s important to choose wisely,” he said.

The proposal builds on earlier work by Ethereum Foundation researcher Justin Drake, who introduced the concept of “Lean Ethereum” in August 2025 as a framework for making the network quantum-secure.

Upgrading storage and account signatures

Another major component of the plan addresses Ethereum’s data storage system, commonly referred to as “blobs.” The network currently relies on KZG (Kate-Zaverucha-Goldberg) commitments to store and verify data. Under the proposed changes, these would be replaced with STARKs (Zero-Knowledge Scalable Transparent Argument of Knowledge), which are considered resistant to quantum attacks. Buterin acknowledged that while feasible, implementing such a transition would require substantial engineering effort. “It’s manageable, but there's a lot of engineering work to do,” said Buterin.

User account security represents a third challenge. Ethereum presently uses ECDSA (Elliptic Curve Digital Signature Algorithm) keys, a widely adopted cryptographic standard that may become vulnerable in a quantum computing environment. The proposed solution is to allow accounts to adopt flexible signature schemes, including lattice-based quantum-resistant alternatives. However, these signatures demand significantly more computational resources and would increase gas costs.

“The long-term fix is protocol-layer recursive signature and proof aggregation, which could reduce these gas overheads to near-zero,” he said.

Managing the cost of quantum-resistant proofs

Quantum-resistant proofs introduce another complexity because running them directly onchain is computationally expensive. Buterin suggested addressing this through protocol-level aggregation, allowing many signatures and proofs to be verified collectively rather than individually.

Instead of validating each proof separately, a single master proof, or “validation frame,” could confirm thousands simultaneously, helping keep costs close to zero. “This way, a block could ‘contain’ a thousand validation frames, each of which contains either a 3kB signature or even a 256kB proof,” he explained.

Alongside the quantum security discussion, Buterin also commented on the Ethereum Foundation’s broader development direction, stating that future upgrades are expected to deliver “progressive decreases of both slot time and finality time.”

Sources:

https://cointelegraph.com/news/vitalik-proposes-4-fixes-quantum-resistance-roadmap-for-ethereum

https://ethresear.ch/t/recursive-stark-based-bandwidth-efficient-mempool/23838

https://x.com/VitalikButerin/status/2027075026378543132