Solana Picks Falcon as Its Post-Quantum Signature Scheme With a Clear Three-Step Migration Plan

mendez

Solana has disclosed its post-quantum readiness strategy, with core developer teams Anza and Firedancer independently converging on Falcon as the network's chosen post-quantum signature scheme. Falcon is a high-performance lattice-based digital signature algorithm and one of the three finalized post-quantum encryption standards selected by the US National Institute of Standards and Technology in 2024. The fact that two separate development teams arrived at the same conclusion independently adds significant credibility to the choice, and both teams have already published initial Falcon implementations on GitHub. The selection addresses a real long-term vulnerability: Solana currently uses the Ed25519 elliptic-curve signature scheme, which like Bitcoin's secp256k1 would be susceptible to Shor's algorithm on sufficiently advanced quantum computers.

The migration plan follows a clear three-step sequence. First, researchers will continue evaluating Falcon and alternative schemes. Second, if the quantum threat becomes credible, newly created wallets will adopt the post-quantum scheme. Third, existing wallets will be migrated to the new standard. Solana has been explicit that no change is required today or likely anytime soon, but that the migration work is manageable, the transition can happen quickly when the time comes, and network performance is not expected to see meaningful impact. For a network with Solana's high-throughput design, that last point matters significantly. Falcon's efficiency was a key factor in its selection, as the network's architecture leaves minimal headroom for cryptographic overhead that slower post-quantum schemes would introduce.

johnblockbuster

Shor's algorithm on sufficiently advanced quantum computers breaking Ed25519. the "sufficiently advanced" part is doing a lot of work in that sentence.